From d609ec53702008bfce34276b48491b5aef58cf61 Mon Sep 17 00:00:00 2001
From: AntociAlin <Antoci.Alin97@gmail.com>
Date: Sat, 30 Apr 2022 10:02:02 -0700
Subject: [PATCH 1/3] Fixed almost all bugs and added a new command in README

---
 README.md                                     |     2 +-
 convertToProlog.sh                            |     2 +-
 profile_compilation/allTheProfileFacts.pl     | 14240 ++++++++++++++++
 profile_compilation/parser.out                |   947 +
 profile_compilation/parsetab.py               |    73 +
 .../prologFactsForProfiles/AdSheet.pl         |   603 +
 .../prologFactsForProfiles/AppleDiags.pl      |   273 +
 .../prologFactsForProfiles/Aquarium.pl        |   288 +
 .../prologFactsForProfiles/BTServer.pl        |   235 +
 .../prologFactsForProfiles/BlueTool.pl        |   141 +
 .../prologFactsForProfiles/CFNetworkAgent.pl  |   127 +
 .../prologFactsForProfiles/CVMServer.pl       |   125 +
 .../prologFactsForProfiles/CommCenter.pl      |   178 +
 .../prologFactsForProfiles/DataActivation.pl  |   324 +
 .../IMDPersistenceAgent.pl                    |   130 +
 .../prologFactsForProfiles/Lowtide.pl         |   505 +
 .../MailCompositionService.pl                 |   420 +
 .../prologFactsForProfiles/MobileCal.pl       |   269 +
 .../prologFactsForProfiles/MobileMaps.pl      |   344 +
 .../prologFactsForProfiles/MobileSMS.pl       |   284 +
 .../prologFactsForProfiles/MobileSlideShow.pl |   441 +
 .../prologFactsForProfiles/PasteBoard.pl      |    94 +
 .../SecureBackupAlert.pl                      |   118 +
 .../prologFactsForProfiles/Stocks.pl          |   257 +
 .../StreamingUnzipService.pl                  |   121 +
 .../prologFactsForProfiles/WebSheet.pl        |   416 +
 .../prologFactsForProfiles/accessoryd.pl      |   110 +
 .../prologFactsForProfiles/afcd.pl            |   142 +
 .../prologFactsForProfiles/apsd.pl            |   128 +
 .../com.apple.GSSCred.pl                      |   120 +
 ...apple.datadetectors.AddToRecentsService.pl |   137 +
 .../com.apple.sandboxd.pl                     |    43 +
 .../com.apple.snhelper.pl                     |   119 +
 .../prologFactsForProfiles/com.apple.tccd.pl  |    38 +
 .../com.apple.tzlinkd.pl                      |   119 +
 .../prologFactsForProfiles/com.apple.ubd.pl   |   208 +
 .../prologFactsForProfiles/com.apple.xpcd.pl  |   130 +
 .../prologFactsForProfiles/container.pl       |  1083 ++
 .../containerBetterGraphProcess.pl            |  1523 ++
 .../containerManualPruning.pl                 |     0
 .../coresymbolicationd.pl                     |   112 +
 .../prologFactsForProfiles/cplogd.pl          |   112 +
 .../prologFactsForProfiles/dataaccessd.pl     |   229 +
 .../prologFactsForProfiles/debugserver.pl     |   132 +
 .../ftp-proxy-embedded.pl                     |   141 +
 .../prologFactsForProfiles/gamed.pl           |   240 +
 .../prologFactsForProfiles/geod.pl            |   169 +
 .../prologFactsForProfiles/gputoolsd.pl       |   126 +
 .../prologFactsForProfiles/iapd.pl            |   174 +
 .../ios-sandbox-profiles.pl                   |     0
 .../prologFactsForProfiles/librariand.pl      |   130 +
 .../prologFactsForProfiles/lockdownd.pl       |   209 +
 .../prologFactsForProfiles/mDNSResponder.pl   |   120 +
 .../prologFactsForProfiles/mediaserverd.pl    |   340 +
 .../mobile-house-arrest.pl                    |   206 +
 .../prologFactsForProfiles/mobileassetd.pl    |   176 +
 .../prologFactsForProfiles/nointernet.pl      |    12 +
 .../prologFactsForProfiles/nsnetworkd.pl      |   162 +
 .../prologFactsForProfiles/passd.pl           |   203 +
 .../prologFactsForProfiles/pfd.pl             |   121 +
 .../prologFactsForProfiles/printd.pl          |   156 +
 .../prologFactsForProfiles/profile.pl         |    19 +
 .../prologFactsForProfiles/ptpd.pl            |   128 +
 .../prologFactsForProfiles/quicklookd.pl      |   397 +
 .../prologFactsForProfiles/racoon.pl          |   111 +
 .../prologFactsForProfiles/requireAnyTest.pl  |    13 +
 .../prologFactsForProfiles/softwareupdated.pl |   127 +
 .../prologFactsForProfiles/syncdefaultsd.pl   |   161 +
 .../prologFactsForProfiles/transitd.pl        |   109 +
 .../prologFactsForProfiles/userfs_helper.pl   |   131 +
 .../prologFactsForProfiles/userfsd.pl         |   127 +
 .../vibrationmanagerd.pl                      |   138 +
 .../prologFactsForProfiles/vpn-plugins.pl     |   182 +
 profile_compilation/sandscout_compiler.py     |   559 +-
 rules.pl                                      |     2 +-
 smartPly.py                                   |     3 -
 test-cases/ios-sandbox-profiles               |     1 +
 77 files changed, 30065 insertions(+), 270 deletions(-)
 create mode 100644 profile_compilation/allTheProfileFacts.pl
 create mode 100644 profile_compilation/parser.out
 create mode 100644 profile_compilation/parsetab.py
 create mode 100644 profile_compilation/prologFactsForProfiles/AdSheet.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/AppleDiags.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/Aquarium.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/BTServer.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/BlueTool.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/CFNetworkAgent.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/CVMServer.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/CommCenter.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/DataActivation.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/IMDPersistenceAgent.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/Lowtide.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/MailCompositionService.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/MobileCal.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/MobileMaps.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/MobileSMS.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/MobileSlideShow.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/PasteBoard.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/SecureBackupAlert.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/Stocks.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/StreamingUnzipService.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/WebSheet.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/accessoryd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/afcd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/apsd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/com.apple.GSSCred.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/com.apple.datadetectors.AddToRecentsService.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/com.apple.sandboxd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/com.apple.snhelper.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/com.apple.tccd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/com.apple.tzlinkd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/com.apple.ubd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/com.apple.xpcd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/container.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/containerBetterGraphProcess.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/containerManualPruning.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/coresymbolicationd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/cplogd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/dataaccessd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/debugserver.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/ftp-proxy-embedded.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/gamed.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/geod.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/gputoolsd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/iapd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/ios-sandbox-profiles.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/librariand.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/lockdownd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/mDNSResponder.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/mediaserverd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/mobile-house-arrest.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/mobileassetd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/nointernet.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/nsnetworkd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/passd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/pfd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/printd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/profile.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/ptpd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/quicklookd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/racoon.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/requireAnyTest.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/softwareupdated.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/syncdefaultsd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/transitd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/userfs_helper.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/userfsd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/vibrationmanagerd.pl
 create mode 100644 profile_compilation/prologFactsForProfiles/vpn-plugins.pl
 create mode 160000 test-cases/ios-sandbox-profiles

diff --git a/README.md b/README.md
index 2469c73..6cb41b2 100644
--- a/README.md
+++ b/README.md
@@ -45,7 +45,7 @@ Pass it a sandbox profile file in SBPL format.
 A sample run is shown below:
 
 ```
-$ ./convertToProlog.sh test-cases/containerManualPruning.sb
+$ ./convertToProlog.sh test-cases/containerBetterGraphProcess.sb
 * Removing old output files in outputFromQueries ...
 * Generating Prolog facts in facts.pl ...
 * Merging Prolog facts (facts.pl) and Prolog rules (rules.pl) in factsAndRules.pl ...
diff --git a/convertToProlog.sh b/convertToProlog.sh
index 04319c7..d49730d 100755
--- a/convertToProlog.sh
+++ b/convertToProlog.sh
@@ -26,7 +26,7 @@ echo "* Merging Prolog facts (facts.pl) and Prolog rules (rules.pl) in factsAndR
 cat facts.pl rules.pl > factsAndRules.pl
 
 echo "* Using script.pl to execute Prolog queries ..."
-swi-prolog.swipl -s script.pl --quiet
+swipl -s script.pl --quiet
 
 echo ""
 echo "See output of Prolog queries in outputFromQueries/ folder."
diff --git a/profile_compilation/allTheProfileFacts.pl b/profile_compilation/allTheProfileFacts.pl
new file mode 100644
index 0000000..60becc6
--- /dev/null
+++ b/profile_compilation/allTheProfileFacts.pl
@@ -0,0 +1,14240 @@
+
+profileDefault(profile("accessoryd"),decision("deny")).
+profileDefault(profile("AdSheet"),decision("deny")).
+profileDefault(profile("afcd"),decision("deny")).
+profileDefault(profile("AppleDiags"),decision("deny")).
+profileDefault(profile("apsd"),decision("deny")).
+profileDefault(profile("Aquarium"),decision("deny")).
+profileDefault(profile("BlueTool"),decision("deny")).
+profileDefault(profile("BTServer"),decision("deny")).
+profileDefault(profile("CFNetworkAgent"),decision("deny")).
+profileDefault(profile("com.apple.datadetectors.AddToRecentsService"),decision("deny")).
+profileDefault(profile("com.apple.GSSCred"),decision("deny")).
+profileDefault(profile("com.apple.sandboxd"),decision("deny")).
+profileDefault(profile("com.apple.snhelper"),decision("deny")).
+profileDefault(profile("com.apple.tccd"),decision("deny")).
+profileDefault(profile("com.apple.tzlinkd"),decision("deny")).
+profileDefault(profile("com.apple.ubd"),decision("deny")).
+profileDefault(profile("com.apple.xpcd"),decision("deny")).
+profileDefault(profile("CommCenter"),decision("deny")).
+profileDefault(profile("containerBetterGraphProcess"),decision("deny")).
+profileDefault(profile("container"),decision("deny")).
+profileDefault(profile("coresymbolicationd"),decision("deny")).
+profileDefault(profile("cplogd"),decision("deny")).
+profileDefault(profile("CVMServer"),decision("deny")).
+profileDefault(profile("dataaccessd"),decision("deny")).
+profileDefault(profile("DataActivation"),decision("deny")).
+profileDefault(profile("debugserver"),decision("deny")).
+profileDefault(profile("ftp-proxy-embedded"),decision("deny")).
+profileDefault(profile("gamed"),decision("deny")).
+profileDefault(profile("geod"),decision("deny")).
+profileDefault(profile("gputoolsd"),decision("deny")).
+profileDefault(profile("iapd"),decision("deny")).
+profileDefault(profile("IMDPersistenceAgent"),decision("deny")).
+profileDefault(profile("librariand"),decision("deny")).
+profileDefault(profile("lockdownd"),decision("deny")).
+profileDefault(profile("Lowtide"),decision("deny")).
+profileDefault(profile("MailCompositionService"),decision("deny")).
+profileDefault(profile("mDNSResponder"),decision("deny")).
+profileDefault(profile("mediaserverd"),decision("deny")).
+profileDefault(profile("mobileassetd"),decision("deny")).
+profileDefault(profile("MobileCal"),decision("deny")).
+profileDefault(profile("mobile-house-arrest"),decision("deny")).
+profileDefault(profile("MobileMaps"),decision("deny")).
+profileDefault(profile("MobileSlideShow"),decision("deny")).
+profileDefault(profile("MobileSMS"),decision("deny")).
+profileDefault(profile("nointernet"),decision("allow")).
+profileDefault(profile("nsnetworkd"),decision("deny")).
+profileDefault(profile("passd"),decision("deny")).
+profileDefault(profile("PasteBoard"),decision("deny")).
+profileDefault(profile("pfd"),decision("deny")).
+profileDefault(profile("printd"),decision("deny")).
+profileDefault(profile("profile"),decision("deny")).
+profileDefault(profile("ptpd"),decision("deny")).
+profileDefault(profile("quicklookd"),decision("deny")).
+profileDefault(profile("racoon"),decision("deny")).
+profileDefault(profile("requireAnyTest"),decision("deny")).
+profileDefault(profile("SecureBackupAlert"),decision("deny")).
+profileDefault(profile("softwareupdated"),decision("deny")).
+profileDefault(profile("Stocks"),decision("deny")).
+profileDefault(profile("StreamingUnzipService"),decision("deny")).
+profileDefault(profile("syncdefaultsd"),decision("deny")).
+profileDefault(profile("transitd"),decision("deny")).
+profileDefault(profile("userfsd"),decision("deny")).
+profileDefault(profile("userfs_helper"),decision("deny")).
+profileDefault(profile("vibrationmanagerd"),decision("deny")).
+profileDefault(profile("vpn-plugins"),decision("deny")).
+profileDefault(profile("WebSheet"),decision("deny")).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iapd.plist")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/"))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iapd[.]plist"/i)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/usr/sbin/accessoryd")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData/Thumbnails")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdLib.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdSheetPad.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdSheetPhone.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.adtracking.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.reminders.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/.+$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPhone/(?|.+)$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad-"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone-"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPhone[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]AdSheetPad-.+[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]AdSheetPhone-.*[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPad/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPhone/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iad.adlibd/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iad.LocationPermissions/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iTunesStore/URLCache/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdLib[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPhone[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]reminders[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/.+$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPhone/(?|.+)$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad-"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone-"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPhone[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(directory),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPad/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPhone/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iad.adlibd/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iad.LocationPermissions/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iTunesStore/URLCache/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.oauthsigner")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ait.client")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.chatkit.clientcomposeserver.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd.active")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.eventpump")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.geod")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gmmd.cookie")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.deleted")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.messageuiservices")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.library")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.twitterd.server")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]iad[.]"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.afc.root")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences/SystemConfiguration")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.afc.root")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/AFCDEBUG")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/aes_0")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/dtracehelper")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/null")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/ptmx")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/random")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/urandom")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/zero")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/Library/Preferences/SystemConfiguration/com.apple.afc.DeviceInfo.plist")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/private/var/mobile/Library/Preferences/com.apple.afc.plist")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec/afcd")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc$"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc/"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.afc.root")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc$"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc/"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("afcd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lockdown.host_watcher")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpchelper")])).
+profileRule(profile("afcd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("afcd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/var/run/lockdown/checkin"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("afcd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("afcd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/aes_0")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/dtracehelper")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/null")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/ptmx")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/random")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/urandom")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/zero")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/dev/"))])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Meda/DCIM/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-sem"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.netsrc")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.network.statistics")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/printd")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/syslog")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("networkSTAR"),filters([require-not(literal("/private/var/tmp/ubiquity.socket")),require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Keychains")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Managed Preferences/mobile")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Preferences")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd/"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com.apple.persistentconnection"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/CoreServices/SystemVersion.+$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/CoreServices/SystemVersion$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Keychains/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ApplePushService/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Managed Preferences/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/preferences/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd/"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com.apple.persistentconnection"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/ApplePushService/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("apsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("apsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("."/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex(".+"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("apsd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/ApplePushService.framework/apsd")])).
+profileRule(profile("apsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("apsd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("apsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/aes_0")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/dtracehelper")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/null")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/ptmx")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/random")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/urandom")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/zero")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/dev/"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/DCIM/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-sem"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.netsrc")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.network.statistics")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/printd")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/syslog")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("networkSTAR"),filters([require-not(literal("/private/var/tmp/ubiquity.socket")),require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-fork"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-data"),filters([literal("/dev/btreset")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-data"),filters([literal("/dev/btwake")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/bt.+$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/bt$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/bluetool/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bt.+$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bt$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleBasebandUserClient")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("BlueTool"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.sandbox.pty"),regex("^/dev/ttys[0-9]"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.sandbox.pty"),regex("^/dev/ttys[0-9]+"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/dev/btwake")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/private/var/preferences/SystemConfiguration/preferences.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/usr/sbin")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/usr/sbin/BTServer")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([subpath("/System/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/wireless")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/wireless/Library")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/usr/sbin")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/usr/sbin/BTServer")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications//"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Application Support/BTServer")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Application Support/BTServer/pincode_defaults.db")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Application Support/BTServer/pincode_defaults.db-journal")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.BTServer.airplane.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.BTServer.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.debug.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.devices.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.ledevices.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.services.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/wireless/Library/CallHistory")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/wireless/Library/CallHistory/call_history.db-journal")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/BTServer"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/wireless/Library/Logs/awd/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer/pincode_defaults.db")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications//"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer/pincode_defaults.db")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer/pincode_defaults.db-journal")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/CrashReporter/hci")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db-journal")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/BTServer"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]BTServer[.]airplane[.]plist"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]BTServer[.]plist"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileBluetooth[.]devices[.]plist"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileBluetooth[.]ledevices[.]plist"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileBluetooth[.]services[.]plist"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/Library/Logs/awd/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("BTServer"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleBasebandUserClient")])).
+profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDResourceDeviceUserClient")])).
+profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOUserEthernetResourceUserClient")])).
+profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^..:..:..:..:..:..-tacl$"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tacl.R")])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tacl.W")])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tsco.R")])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tsco.W")])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_read")])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_write")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BlueTool")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTAudioHALPlugin.xpc")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTServer.avrcp")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTServer.le")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTServer.map")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.xpc")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ProgressReporting")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WirelessCoexManager")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("BTServer"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("BTServer"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("BTServer"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.plist")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Applications/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/db/heim-credential-store.archive")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/heim-credential-store.archive")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-read-data"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-readSTAR"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-read-xattr"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/null")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/zero")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/cores/"/i),require-not(file-mode("#o0000"))])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CrashReporter/Sandbox-.+[.]plist"/i)])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.DirectoryService.libinfo_v1")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/tmp/[.]webdavUDS[.][^/]+$"/i)])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/sandbox[.]"/i)])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/var/mobile/Library/Caches/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.snhelper")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class-regex("^com[.]apple[.]tcc[.]"/i)])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-read-data"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-readSTAR"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-read-xattr"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/TCC/")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/com.apple.tccd/")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/tmp/[.]webdavUDS[.][^/]+$"/i)])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("signal"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone/localtime")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone/localtime")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension-class("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-read-data"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Application Support")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ubd.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd/"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Collections"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/awd/awd-ubd[.]log"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity.+[.]log"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity[.]log"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]ubd"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]ubd"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Mobile Documents"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/processed-Mobile Documents[.]delete"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Ubiquity/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/awd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd/"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Collections"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/awd/awd-ubd[.]log"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity.+[.]log"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity[.]log"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]ubd"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]ubd"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Mobile Documents"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mmcs[.]plist"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]ubd[.]plist"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/processed-Mobile Documents[.]delete"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Ubiquity/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/Ubiquity.framework/Versions/A/Support/ubd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("sysctlSTAR"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("sysctl-write"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",24)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",30)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-info"),filters([info-type("hw.uuid")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/group")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/hosts")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/passwd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/protocols")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/services")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/db/.debug_xpcd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Audio/Plug-Ins/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Applications/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("signal"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/cu.debug")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.spi-baseband")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.umts")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bbcdc[.]"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/dlci[.]spi-baseband[.]"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/cu.debug")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/mux.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/mux.spi-baseband")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.debug")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.debug.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.umts")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.cellulardataplan.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.commcenter.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iqagent.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.operator.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.tethering_override.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videoconference_override.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/AeneasCustomFlags.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/tmp/csilock")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/bbcdc[.]"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/dlci[.]spi-baseband[.]"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/CallHistory/call_history[.]db$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Voicemail/voicemail[.]db$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/tmp/CSI[.]scratch"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/"))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/LASD/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-write-mode"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.commcenter.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-write-owner"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.commcenter.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/cu.debug")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.spi-baseband")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.umts")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/CommCenter/spool/loading")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/logs/CoreTelephonyTraceScratch")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/logs/log-bb-live-stats.txt")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/preferences/AeneasCustomFlags.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/preferences/SystemConfiguration/preferences.plist-lock")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/tmp/csilock")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bbcdc[.]"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/dlci[.]spi-baseband[.]"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CoreTelephonyTrace$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CoreTelephonyTrace/log-bb-.+$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CoreTelephonyTrace/log-bb-$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CrashReporter/Baseband/log-bb-.+$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CrashReporter/Baseband/log-bb-$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/CallHistory/call_history[.]db$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Voicemail/voicemail[.]db$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/csidata$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/csidata[.]tmp$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist-lock$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist-new$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/CSI[.]scratch"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/LASD/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.CommCenter.lasd")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]CoreTelephony[.]LogChannel[.]$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]CoreTelephony[.]LogChannel[.][-0-9A-F]+$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),socket-domain(af_system),socket-protocol(1)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(1)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-ioctl"),filters([literal("/dev/aes_0")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-ioctl"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-ioctl"),filters([literal("/dev/ptmx")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/iTunesArtwork$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.executable")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.absolute-path.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.home-relative-path.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/OnDemandResources/AssetPacks/"),extension("com.apple.odr-assets")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/System/Library/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.executable")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-only"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-only"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-only"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-only"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),subpath("/private/var/mobile/Library/OnDemandResources/AssetPacks/"),extension("com.apple.odr-assets")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),subpath("/System/Library/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/Caches$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/Caches/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.executable")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),subpath("/private/var/mobile/Library/ReplayKit/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ReplayKit.RPVideoEditorExtension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension("com.apple.sandbox.executable"),extension-class("com.apple.nsurlsessiond.readonly")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read"),extension-class("com.apple.mediaserverd.read")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Library/Mail/"),extension-class("com.apple.mediaserverd.read"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container"),extension-class("com.apple.mediaserverd.read")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/"),extension("com.apple.avasset.read-only"),extension-class("com.apple.mediaserverd.read"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-map-executable"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/DeviceRegistry")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/GameKit/Data")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData/Thumbnails"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/DeviceRegistry")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/iTunesArtwork$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.executable")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.absolute-path.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.absolute-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.home-relative-path.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.home-relative-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Managed Preferences/mobile/.GlobalPreferences.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.security.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.AutoWake.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/System/Library/PairedSyncServices/com.apple.pairedsync.mail.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Containers/Bundle/[^/]+/[-0-9A-Z]+/GeoJSON"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]NanoMail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]stocks[.]bridge$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]restrictionspassword[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.app-sandbox.read")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/com.apple.xpc.launchd.bootstrap.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.security.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/GeoServices$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/GeoServices/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]ToneLibrary$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/[.]GlobalPreferences$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/GameKit/Data/[^/]+[.]gcdata$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite-journal$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite-shm$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite-wal$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/group")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/hosts")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/passwd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/protocols")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/services")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-journal"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-shm"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-wal"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Ringtones/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/.DocumentRevisions-V100/PerUID/"),extension("com.apple.revisiond.revision")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/CloudDocs/session/r/"),vnode-type(regular-file),extension("com.apple.clouddocs.version")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/OnDemandResources/AssetPacks/"),extension("com.apple.odr-assets")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/"),extension("com.apple.avasset.read-only"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Metadata/"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/AppleInternal/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/Applications/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Library/AddressBook/"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Application Support/Mail/Plugins/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/.DocumentRevisions-V100/PerUID/"),extension("com.apple.revisiond.revision")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/CloudDocs/session/r/"),vnode-type(regular-file),extension("com.apple.clouddocs.version")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/DataAccess/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/"),require-entitlement("com.apple.security.exception.carrier-bundle.read",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([vnode-type(directory),literal("/private/var/mobile/Library/DeviceRegistry")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/dev/aes_0")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/dev/ptmx")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/dev/dtracehelper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/dev/null")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/dev/zero")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-mode"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-mode"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.security.exception.files.absolute-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.security.exception.files.home-relative-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Containers/Bundle/[^/]+/[-0-9A-Z]+/GeoJSON"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]NanoMail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistant[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GMM[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]internal[.]Voltaire[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailAccount-ExtProperties[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mail[.]composition[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]NanoMailKit[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncState[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]restrictionspassword[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtube[.]dp[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]skyhookwireless[.]wps[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]EmojiPreferences[.]plist"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-journal"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/SMS/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/Inbox$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/Inbox/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("compass-calibration")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("gyro-interrupt-calibration")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property-regex("^BackCamera"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("com.apple.system.get-hardware-identifiers",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("com.apple.wifi.manager-access",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("fairplay-client",[require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-not(iokit-property-regex("-mac-address"/i)),require-not(iokit-property-regex("mac-address-"/i)),require-not(iokit-property-regex(".+-mac-address"/i)),require-not(iokit-property-regex(".+mac-address-"/i))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([extension("com.apple.security.exception.iokit-user-client-class")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSubmitter2")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDLibUserClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceAcceleratorClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-sem"),filters([extension("com.apple.sandbox.application-group")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-sem"),filters([semaphore-owner(self)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^apple[.]shm[.]cfprefsd[.]"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([extension("com.apple.sandbox.application-group")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([ipc-posix-name-regex("^/mono[.][0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.sandbox.application-group")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.global-name"),global-name-regex("."/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.global-name"),global-name-regex(".+"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.local-name"),local-name-regex("."/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.local-name"),local-name-regex(".+"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd"),require-entitlement("abs-client",[entitlement-value-regex(".*"/i)])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd"),require-entitlement("absinthe-client",[entitlement-value-regex(".*"/i)])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed"),require-entitlement("absinthe-client",[entitlement-value-regex(".*"/i)])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accessmanager")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.authmanager")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.oauthsigner")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.adid"),require-entitlement("adi-client",[entitlement-value-regex(".*"/i)])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPad.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPhone.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplay.sender.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ait.client")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("com.apple.authkit.client",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("com.apple.authkit.client.internal",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("com.apple.authkit.client.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("com.apple.authkit.client",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("com.apple.authkit.client.internal",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("com.apple.authkit.client.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AOSNotification"),require-entitlement("com.apple.aosnotification.aosnotifyd-access",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appleprofilepolicyd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aps.alertprovider.xpc"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.applicationstateconnection")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.expiration")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.extension")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.processassertionconnection")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.keepDaemonAlive")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.messagingServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.notificationServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioConverterServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioFileServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioUnitServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.SystemSoundServer-iOS")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.animation-fence-arbiter")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.checkin")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.TouchDeliveryPolicyServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.watchdog")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.workspaceserverconnection")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backupd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.biometrickitd"),require-entitlement("com.apple.private.bmk.allow",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bird")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bird.token")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.dataproviderconnection"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.observerconnection"),require-entitlement("com.apple.bulletinboard.observer",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.settingsconnection"),require-entitlement("com.apple.bulletinboard.settings",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.systemstateconnection"),require-entitlement("com.apple.bulletinboard.systemstate",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.utilitiesconnection"),require-entitlement("com.apple.bulletinboard.utilities",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletindistributord.server"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bypassBasebandAutoBooter.msgport")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cache_delete"),require-entitlement("com.apple.mobile.deleted.AllowFreeSpace",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cache_delete"),require-entitlement("com.apple.private.CacheDelete",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.certui.relay")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfprefsd.agent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfprefsd.daemon")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cloudd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.clouddbd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.dm-helper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.mobile-helper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cookied")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CoreAuthentication.daemon")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CoreAuthentication.daemon.libxpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd.people"),require-entitlement("com.apple.coreduetd.allow",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd.people"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd"),require-entitlement("com.apple.coreduetd.allow",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audioprocessingtap")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesession")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesession"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesession"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesource")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesource"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesource"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.compressionsession")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpe")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpeprotector")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.decompressionsession")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint.xpc"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreader")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.mutablecomposition")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videoqueue")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplay")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplayserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.lsuseractivitymanager.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ctkd.token-client")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsCompAgent_armv7")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd.active")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.datamigrator.dz")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.diagnosticd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@0v3")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.duetknowledged.activity")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.familycircle.agent"),require-entitlement("com.apple.private.familycircle",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileProvider")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.frontboard.systemappservices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.frontboard.workspace")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamecenter")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.GameController.gamecontrollerd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed.note")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.geod")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gizmoappd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.GSSCred")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.harvestd.manager"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.healthd.restriction")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.healthd.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.homed.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.distributednotification.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.distributednotification.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icfcallserver"),require-entitlement("com.apple.private.icfcallserver",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icloud.findmydeviced"),require-entitlement("com.apple.aosnotification.aosnotifyd-access",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icloud.findmydeviced"),require-entitlement("com.apple.icloud.findmydeviced.access",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.embedded.auth"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imavagent.embedded.auth")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.instruments.server.mig")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itdbprep.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.notifications.public")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.public")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.advertisingidentifiers")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.icons")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.mapdb")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.open")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.openurl")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lskdd"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-dev")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-prod")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdservice")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled"),require-entitlement("com.apple.managedconfiguration.profiled-access",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Maps.mapspushd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Maps.SpringBoard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponder")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponderHelper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaControl.daemon")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaremoted.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing-nowake")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver.io")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileAccessoryUpdater")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileFileIntegrity")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerControllerInternal")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServerExists")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.keybagd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilesafari-settings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebSheet")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.softwareupdated")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilestoredemod"),require-entitlement("com.apple.private.mobilestoredemo.enabledemo",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerControllerInternal")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServerExists")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanomaps.xpc.GeoServices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanomaps.xpc.Maps"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nano.nanoregistry.paireddeviceregistry")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanoprefsync")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanoprefsync"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanoprefsync"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nehelper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nesessionmanager")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd_privileged"),require-entitlement("com.apple.networkd_privileged",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networking.captivenetworksupport")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.notificationcenter.widgetcontrollerconnection")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.NPKCompanionAgent.library")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsurlsessiond")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsurlstorage-cache")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ondemandd.client")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pairedsyncd.syncstate")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.parsec.subscriptionservice.internal"),require-entitlement("com.apple.private.subscriptionservice.internal",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.parsec.subscriptionservice"),require-entitlement("com.apple.smoot.subscriptionservice",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.assertions")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.in-app-payment")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.library")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pegasus")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pegasus"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pegasus"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pluginkit.pkd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.prdaily")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ProgressReporting")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.quicklook.ThumbnailsAgent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.replayd"),require-not(privilege-id(0))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.DirectoryService")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.Jetsam")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SafetyNet")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.StackShot")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.revisiond")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.routined.registration"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.routined.registration"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.rtcreportingd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sandboxd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.scrod")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.le.att.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.le.pipe.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd.nsxpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.siri.vocabularyupdates"),require-entitlement("com.apple.siri.synapse",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.spotlight.IndexAgent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.spotlight.SearchAgent"),require-entitlement("com.apple.spotlight.search",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.alerts")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.blockableservices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.icongeneration")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.remotenotifications")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.statusbarservices"),require-entitlement("com.apple.springboard.statusbarstyleoverrides",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.UIKit.migserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.watchdogserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.contacts"),require-entitlement("com.apple.private.suggestions",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.events"),require-entitlement("com.apple.private.suggestions",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.mail"),require-entitlement("com.apple.private.suggestions",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.spotlight"),require-entitlement("com.apple.private.suggestions",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.suggestionmanager"),require-entitlement("com.apple.private.suggestions",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.syncdefaultsd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController-priv"),require-entitlement("com.apple.networking.vpn.configuration",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.callservicesdaemon.callcapabilities")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.callservicesdaemon.voip")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.remotelogdaemon")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.testmanagerd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.lexicon-server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.shortcuts")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.trustd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.twitterd.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.uikit.GestureServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.KeyboardManagement")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.KeyboardManagement.hosted")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.unfreed"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usernotification.notificationregistrar")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usernotification.notificationscheduler")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.avconference")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.camera")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.keepalive")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vsassetd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wapi.client")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.watchconnectivity.complication")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wcd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.weibod.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("PurplePPTServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemEventPort")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]uikit[.]viewservice[.].+"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.cfprefsd.agent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver"),require-entitlement("com.apple.accessibility.api",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([local-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),extension("com.apple.sandbox.application-group")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),global-name("com.apple.Music.MPMusicPlayerControllerInternal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),global-name("com.apple.Music.MPMusicPlayerMigServerExists"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),local-name("com.apple.accessibility.gax.client")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),local-name("com.apple.iphone.axserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),local-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([local(ip("*:*"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),literal("/private/var/run/lockdown.sock"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.netsrc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.network.statistics")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/printd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/syslog")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),remote(ip("*:*"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvram-delete"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvram-get"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvram-set"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvramSTAR"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidfdinfo"),filters([require-entitlement("com.apple.security.exception.process-info",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidfdinfo"),filters([target(self)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidinfo"),filters([require-entitlement("com.apple.security.exception.process-info",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidinfo"),filters([target(others),require-entitlement("com.apple.DiagnosticExtensions.extension",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidinfo"),filters([target(self)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-setcontrol"),filters([target(self)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("signal"),filters([target(others),require-entitlement("com.apple.DiagnosticExtensions.extension",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("signal"),filters([target(others),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("sysctl-read"),filters([require-not(sysctl-name("kern.proc.pid.1")),require-entitlement("com.apple.DiagnosticExtensions.extension",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("sysctl-read"),filters([require-not(sysctl-name("kern.proc.pid.1")),require-not(sysctl-name-regex("^kern[.]proc[.]"/i))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("sysctl-read"),filters([sysctl-name-regex("^kern[.]proc[.]"/i),require-entitlement("com.apple.security.exception.process-info",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",31)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",32)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr"),require-entitlement("fairplay-client",[]),require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-privilege"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-socket"),filters([socket-domain(39),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([extension("com.apple.security.exception.shared-preference.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([extension("com.apple.security.exception.shared-preference.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.Accessibility")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.accountsettings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AdLib")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.adtracking")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.aggregated")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AOSNotification.public.notbackedup")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.appleaccount")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AppStore"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AppSupport")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.apsd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.assistant.backedup")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.assistant"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.assistant.support")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.atc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.avfoundation")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.avfoundation"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.avfoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.books"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.books"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.books"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.bulletinboard"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.camera")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.celestial")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.certui")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.compass")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.ConfigServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreanimation")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreaudio")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreaudio"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreaudio"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coremedia")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coremedia"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coremedia"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.CoreMotion")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.corevideo")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.corevideo"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.corevideo"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.da")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.DataAccess.BehaviorOptions"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.dataaccess.dataaccessd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.DataMigration")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.demo-settings")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.demo-settings"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.EmojiPreferences")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.gamed")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.gamekit")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.GEO")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.GMM")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.GMM"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.iapd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.icloud.findmydeviced.postwipe")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.icloud.findmydeviced.public.notbackedup")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.imagent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.imdsmsrecordstore")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.imessage")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.InputModePreferences")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.internal.Voltaire"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.iokit.IOMobileGraphicsFamily")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.iqagent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itdbprep.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.keyboard")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.LaunchServices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.locationd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.logging")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.madrid")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MailAccount-ExtProperties"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mail.composition"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.managedconfiguration.janitor")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MapKit.internal")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mediaaccessibility")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mediaaccessibility.public")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mediaremote")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.messagesbadgecontroller")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mmcs")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mms_override")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MobileAddressBook")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MobileAsset")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilecal")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilecal.alarmengine")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileme.fmf.assistant")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilenotes")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileslideshow")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MobileStore"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilestoresettings")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobile.SyncMigrator")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobiletimer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilevpn")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mt")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.NanoMailKit"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nanoprefsyncd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nanoprefsyncd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nanoprefsyncd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.NanoRegistry")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.network.eapclient.tls.TrustExceptions")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nike")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.OTASyncAgent"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.OTASyncState")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.OTASyncState"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.PeoplePicker")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.persistentconnection")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.persistentconnection-mcc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.Preferences")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences.datetime")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences.network")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences-sounds")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences.sounds")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.Sharing")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.softwareupdateservicesd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.SpeakSelection")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.telephonyutilities.dialassist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.twitterd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.ubd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.UIKit")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.videos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.voicemail")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.VoiceMemos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.VoiceOverTouch")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.voiceservices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.weather"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebUI")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.XCTest")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.youtube.dp"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.youtubeframework")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.skyhookwireless.wps"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain(".GlobalPreferences")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("itdbprepserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("kCFPreferencesAnyApplication")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("mediaremote")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([extension("com.apple.security.exception.shared-preference.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.accountsettings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.assistant"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.EmojiPreferences")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.GMM"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.internal.Voltaire"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.MailAccount-ExtProperties"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mail.composition"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mediaaccessibility.public")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.NanoMailKit"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.OTASyncAgent"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.OTASyncState"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.PeoplePicker")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.Preferences")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.youtube.dp"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.skyhookwireless.wps"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("container"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("container"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("container"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Applications")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/GameKit/Data")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData/Thumbnails")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.appletv.WhatsNew")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("platform-application",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/[-0-9A-Z]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/[-0-9A-Z]+/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdLib.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.adtracking.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppStore.plist"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.apsd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.atc.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.books.plist"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.books.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.books.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.celestial.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.certui.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.compass.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist"),require-entitlement("platform-application",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.dataaccessd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist"),require-entitlement("platform-application",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.facetime.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.frontrow.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.appletv.WhatsNew")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamed.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamekit.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imagent.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imdsmsrecordstore.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imessage.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iqagent.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itdbprep.server.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.LaunchServices.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.madrid.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MailAccount-ExtProperties.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mail.composition.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.managedconfiguration.janitor.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.messagesbadgecontroller.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mms_override.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAddressBook.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.alarmengine.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileme.fmf.assistant.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilenotes.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileStore.plist"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilestoresettings.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobile.SyncMigrator.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobiletimer.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilevpn.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.network.eapclient.tls.TrustExceptions.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.nike.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncState.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncState.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection-mcc.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.datetime.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.network.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences-sounds.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.restrictionspassword.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Search.framework.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.softwareupdateservicesd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist"),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.twitterd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ubd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voicemail.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VoiceMemos.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.weather.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtube.dp.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/itdbprepserver.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/mediaremote.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.AutoWake.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist"),require-entitlement("platform-application",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.BugReporter")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.Flytrap")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/GameKit/Data/[^/]+[.]gcdata$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Ringtones/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Application Support/Mail/Plugins/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.appletv.WhatsNew")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("platform-application",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/DataAccess/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mail/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory)])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/[-0-9A-Z]+/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailAccount-ExtProperties[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mail[.]composition[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncState[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]restrictionspassword[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]weather[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtube[.]dp[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.BugReporter")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.Flytrap")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.internal.Flytrap/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Snapshots/com.apple.internal.Flytrap/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Calendar/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/DataAccess/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mail/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Notes/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/PhotoData/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("compass-calibration")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("gyro-interrupt-calibration")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property-regex("^BackCamera"/i)])).
+profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("fairplay-client",[])])).
+profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([require-not(iokit-property-regex("die-id$"/i)),require-not(iokit-property-regex("chip-id$"/i)),require-not(iokit-property-regex("board-id$"/i)),require-not(iokit-property-regex(".+((die|chip)|board)-id$"/i)),require-not(iokit-property-regex("[Cc]alibration"/i)),require-not(iokit-property-regex(".+[Cc]alibration"/i)),require-not(iokit-property-regex("-mac-address"/i)),require-not(iokit-property-regex("mac-address-"/i)),require-not(iokit-property-regex(".+-mac-address"/i)),require-not(iokit-property-regex(".+mac-address-"/i)),require-not(iokit-property-regex("^AppleDiagnostic"/i))])).
+profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDLibUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-sem"),filters([extension("com.apple.sandbox.application-group")])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-sem"),filters([semaphore-owner(self)])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([extension("com.apple.sandbox.application-group")])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([ipc-posix-name-regex("^/mono[.][0-9]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.sandbox.application-group")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd"),require-entitlement("abs-client",[entitlement-value-regex(".+"/i)])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accessmanager")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.authmanager")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.oauthsigner")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPad.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPhone.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplay.sender.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ait.client")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AOSNotification"),require-entitlement("com.apple.aosnotification.aosnotifyd-access",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appleprofilepolicyd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aps.alertprovider.xpc"),require-entitlement("platform-application",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.keepDaemonAlive")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.messagingServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.notificationServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioConverterServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioFileServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioUnitServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.SystemSounds")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.checkin")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.watchdog")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.workspaceserverconnection")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.biometrickitd"),require-entitlement("com.apple.private.bmk.allow",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.observerconnection"),require-entitlement("com.apple.bulletinboard.observer",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.settingsconnection"),require-entitlement("com.apple.bulletinboard.settings",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.systemstateconnection"),require-entitlement("com.apple.bulletinboard.systemstate",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.utilitiesconnection"),require-entitlement("com.apple.bulletinboard.utilities",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bypassBasebandAutoBooter.msgport")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.certui.relay")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.clouddbd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.dm-helper")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.mobile-helper")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audioprocessingtap")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpe")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpeprotector")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreader")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.mutablecomposition")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videoqueue")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplay")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplayserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CrashCopy.OTA")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.crash_mover")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsCompAgent_armv7")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd.active")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.datamigrator.dz")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@0v3")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamecenter")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed.note")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.geod")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.distributednotification.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.distributednotification.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icfcallserver"),require-entitlement("com.apple.private.icfcallserver",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imavagent.embedded.auth")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.instruments.server.mig")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itdbprep.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.notifications.public")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.public")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lskdd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-dev")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-prod")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdservice")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled"),require-entitlement("com.apple.managedconfiguration.profiled-access",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponder")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponderHelper")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaControl.daemon")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing-nowake")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver.io")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileAccessoryUpdater")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileFileIntegrity")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerControllerInternal")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServerExists")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.notification_proxy")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilesafari-settings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebSheet")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.softwareupdated")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilestoredemod"),require-entitlement("com.apple.private.mobilestoredemo.enabledemo",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerControllerInternal")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServerExists")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networking.captivenetworksupport")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.OTATaskingAgent")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.library")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.prdaily")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ProgressReporting")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.DirectoryService")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.Jetsam")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SafetyNet")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.StackShot")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sandboxd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.scrod")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securekeyvaultd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd.xpc"),require-entitlement("platform-application",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sociald.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.alerts")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.blockableservices")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.icongeneration")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.remotenotifications")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.UIKit.migserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.watchdogserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.syncdefaultsd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sysmond")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController-priv"),require-entitlement("com.apple.networking.vpn.configuration",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.remotelogdaemon")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.twitterd.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.unfreed")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.avconference")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.camera")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vsassetd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wapi.client")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.weibod.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("PurplePPTServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver"),require-entitlement("com.apple.accessibility.api",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("absinthe-client",[entitlement-value-regex(".+"/i)])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.BugReporter")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.Flytrap")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([extension("com.apple.sandbox.application-group")])).
+profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("container"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
+profileRule(profile("container"),decision("allow"),operation("network-outbound"),filters([require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:23")))])).
+profileRule(profile("container"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078")))])).
+profileRule(profile("container"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("container"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("container"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("container"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("process-info-pidinfo"),filters([target(self)])).
+profileRule(profile("container"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("container"),decision("allow"),operation("signal"),filters([target(others),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("container"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("container"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("container"),decision("allow"),operation("system-info"),filters([require-entitlement("fairplay-client",[]),info-type("net.link.addr"),require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])).
+profileRule(profile("container"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("container"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("container"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Caches/com.apple.coresymbolicationd/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/System/Library/Caches/com.apple.coresymbolicationd/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("cplogd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("cplogd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("cplogd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("cplogd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("cplogd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/OpenGLES.framework/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/bin/codesign_allocate/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]cvmsCompAgent"/i)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("CVMServer"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/System/Library/Frameworks/OpenGLES.framework/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/usr/bin/codesign_allocate/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.autoincrement.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db-journal")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db-shm")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db-wal")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/com.apple.Bookmarks.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.].+binarycookies"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.]binarycookies"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Frameworks/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.dataaccess.dataaccessd/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.mobilesafari/ReadingListArchives/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/DataAccess/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/DataAccess/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/ManagedConfiguration/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Message/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mail/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.autoincrement.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db-journal")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db-shm")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db-wal")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/com.apple.Bookmarks.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.].+binarycookies"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.]binarycookies"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.dataaccess.dataaccessd/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/DataAccess/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Calendar/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/DataAccess/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/DataAccess/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/ManagedConfiguration/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/Message/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mail/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Notes/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Safari")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.mobilesafari/ReadingListArchives/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("signal"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("system-sched"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/WebClips/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataActivation.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilesafari.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtube.dp.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itdbprep.postprocess.lock")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation-"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp-"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]DataActivation[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/[.]dat"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]DataActivation.savedState/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]DataActivation-.+[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]DataActivation[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/group")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/hosts")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/passwd")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/protocols")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/services")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Safari/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/DataActivation.app/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/MobileSafari.app/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Ringtones/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/Safari/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]DataActivation.savedState"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itdbprep.postprocess.lock")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp-"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]DataActivation[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilesafari[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtube[.]dp[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]dat"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation-"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]DataActivation[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]DataActivation.savedState/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Safari/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Applications/DataActivation.app/DataActivation")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Applications/MobileSafari.app/MobileSafari")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Applications")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app/"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[.]app$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[^/]+[.]app$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[.]app/"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[^/]+[.]app/"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/private/var/mobile/"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("debugserver"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("mach-priv-task-port"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("localhost:*"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),remote(tcp("localhost:*"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([regex("^/private/var/run/lockdown/checkin"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("debugserver"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications//[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications//[.]app$"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app$"/i)),require-not(regex("^/private/var/mobile/Applications//[^/]+[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications//[^/]+[.]app$"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i))])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-fork"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("signal"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("debugserver"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pfd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([local(ip("*:*"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.conference.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamecenter.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamed.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VideoConference.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/gamed")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/gamed"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]gamed"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]gamed"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Applications/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.gamed/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/GameKit/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/GameKit/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/awd/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/GameKit/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/gamed"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]gamed"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]gamed"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]conference[.]plist"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]gamecenter[.]plist"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]gamed[.]plist"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]logging[.]plist"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.gamed/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/GameKit/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/GameKit/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/awd/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/GameKit/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("gamed"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamecenter")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("gamed"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:*"))])).
+profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([remote(ip("*:*"))])).
+profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("gamed"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/usr/libexec/gamed")])).
+profileRule(profile("gamed"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("gamed"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("gamed"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("gamed"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("geod"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("geod"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("geod"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("geod"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("geod"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("geod"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.GeoServices")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Maps/MapTiles")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb-journal")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/MapTiles")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb-journal")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.GeoServices/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("geod"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb")])).
+profileRule(profile("geod"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb")])).
+profileRule(profile("geod"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb-journal")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb-journal")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GEO[.]plist"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GMM[.]plist"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.GeoServices/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("geod"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("geod"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("geod"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("geod"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gmmd.cookie")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([remote(ip("*:*"))])).
+profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("geod"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("geod"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("geod"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("geod"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/GPUTools/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Caches/com.apple.opengl/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.appwatchdog")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lockdown.host_watcher")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.icongeneration")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-priv-task-port"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/gputoolsdhelper.sock")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([local(tcp("localhost:*"))])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/var/run/lockdown/checkin"/i)])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Developer/usr/libexec/gputoolsd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("signal"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/ea")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iap2d.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iapd.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iaptransportd.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/haywire"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/iap2d"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/iapd"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/mp"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistivetouchd[.]enabled[.]launchd"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iap2d/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/Panics/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Radio/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/sbin/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/haywire"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/iap2d"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/iapd"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/mp"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistivetouchd[.]enabled[.]launchd"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iap2d[.]plist"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iapd[.]plist"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iaptransportd[.]plist"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]videos[.]plist"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iap2d/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/Panics/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Radio/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("iapd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("iapd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("iapd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.iap2d.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("iapd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.iaptransportd.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("iapd"),decision("allow"),operation("network-bind"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:*"))])).
+profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([remote(udp("*:*"))])).
+profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("iapd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/IAP.framework/Support/iap2d")])).
+profileRule(profile("iapd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/IAP.framework/Support/iapd")])).
+profileRule(profile("iapd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("iapd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("iapd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ids.plist")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imdsmsrecordstore.plist")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/SMSMigrator/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]imdsmsrecordstore[.]plist"/i)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/SMSMigrator/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.search.appindexer")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.searchd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension-class("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Application Support")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.librariand.plist")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand.+[.]log"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand[.]log"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Librarian/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand.+[.]log"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand[.]log"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]appleaccount[.]plist"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]librariand[.]plist"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Librarian/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("librariand"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("librariand"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ubd")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("librariand"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("librariand"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("librariand"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("librariand"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("system-info"),filters([info-type("hw.uuid")])).
+profileRule(profile("librariand"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.purplebuddy.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/lockdownd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Preferences/com[.]apple[.]mobile[.]lockdownd[.]plist"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Lockdown/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/Preferences.app/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/logs/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Applications/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Voicemail/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/preferences/SystemConfiguration/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/root/Library/Lockdown/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/run/lockdown/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(directory)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-write-mode"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/com[.]apple[.]eapolclient[.]plist"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/com[.]apple[.]ipsec[.]plist"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Preferences/com[.]apple[.]mobile[.]lockdownd[.]plist"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/logs/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Lockdown/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/lockdown/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleEffaceableStorageUserClient")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleNANDFTLUserClient")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("iokit-set-properties"),filters([iokit-property("auto-boot")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.afcd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AOSNotification")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atc")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.crash_mover")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.crashreportcopymobile")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lockdown.host_watcher")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.assertion_agent")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installation_proxy")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.notification_proxy")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.syslog_relay")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.timed.xpc")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("*:62078"))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/lockdown/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockbot")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/random")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/urandom")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/AppleTV/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb-journal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdLib.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.airplay.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appletvservices.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.apsd.launchd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.celestial.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CrashReporter.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iqagent.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.LaunchServices.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.datetime.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences-sounds.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.soundpref.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.storebookkeeper.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/preferences.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/.+$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide-"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/awd/awd-AppleTV.log"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]lowtide"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]lowtide"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]frontrow[.]"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]lowtide[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]lowtide.savedState/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]lowtide-.+[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]lowtide[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/AppleTV.app/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/AppleTV.app.dSYM/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/logs/CrashReporter/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Documents/var/nrd/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Front Row/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/AppleTV/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.Radio/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Ubiquity/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/MediaStream/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Radio/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/MobileSoftwareUpdate/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Updates/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/AirTunes/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Documents")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Documents/var")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]lowtide.savedState"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Media")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-flags"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-mode"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/Front Row")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone/localtime")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb-journal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.apsd.launchd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/tmp/MediaControlServer.log")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/awd/awd-AppleTV.log"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdLib[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]aggregated[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]airplay[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]appletvservices[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]celestial[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]coremedia[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]CrashReporter[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]demo-settings[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]frontrow[.]"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iqagent[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mmcs[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]preferences[.]datetime[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]preferences-sounds[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]soundpref[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]storebookkeeper[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]voiceservices[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/.+$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide-"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]lowtide"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]lowtide"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]lowtide[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]lowtide.savedState/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(directory),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Documents/var/nrd/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Front Row/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/AppleTV/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iLifeSlideshow/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.Radio/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/Ubiquity/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/MediaStream/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Radio/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/MobileSoftwareUpdate/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/AirTunes/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Updates/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleNANDFTLUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVAudioInterfaceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVControllerUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVDeviceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVServiceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVVideoInterfaceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPAudioInterfaceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPControllerUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPDeviceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPDisplayInterfaceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPServiceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.adid")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated.addaily")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atvitunescloudd.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.checkin")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.workspaceserverconnection")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpe")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreader")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreaderloader")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videoqueue")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplay")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CrashCopy.OTA")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.frontrow.tracerouteix")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.obliteration")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.softwareupdated")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.timed.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tzlink")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.keepalive")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wirelessproxd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("PurplePPTServer")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.coremedia.customurlhandler")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.airplay.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]appletv$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]appletv[.]"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]lowtide$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]lowtide[.]"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/Applications/AppleTV.app/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("system-fsctl"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("system-info"),filters([info-type("hw.uuid")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.bulletinboard.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mail.composition.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService-"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailCompositionService[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MailCompositionService.savedState/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MailCompositionService-.+[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MailCompositionService[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/MailCompositionService.app/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MailCompositionService.savedState"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mail[.]composition[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService-"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailCompositionService[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MailCompositionService.savedState/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.utilitiesconnection")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]dataaccess[.]dataaccessd"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([literal("/Library/Keychains/System.keychain")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([literal("/private/var/db/crls/crlcache.db")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/dev/console")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/com.apple.crypto.plist")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/SystemConfiguration/com.apple.nat.plist")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/SystemConfiguration/com.apple.PowerManagement.plist")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/SystemConfiguration/preferences.plist")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Security/Trust Settings/Admin.plist")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/private/etc")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/private/etc/hosts")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/private/var/preferences/SystemConfiguration/preferences.plist")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/usr/sbin")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/usr/sbin/mDNSResponder")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),regex("^/Library/Preferences/ByHost/[.]GlobalPreferences[.]"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),regex("^/Library/Preferences/com[.]apple[.]security[.]"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),regex("^/Library/Preferences/[.]GlobalPreferences[.]"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([subpath("/private/var/db/mds/")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([subpath("/private/var/tmp/mds/")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/private/var/db/dyld/")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/System/")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/lib/")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/share/")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Managed Preferences")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Library/Preferences/")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Managed Preferences/mobile")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Managed Preferences/mobile/com.apple.mDNSResponder.plist")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/db/mds/[0-9]+$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/db/mds/[0-9]+/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/C/mds$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/C/mds/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/tmp/mds/[0-9]+$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/tmp/mds/[0-9]+/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/console")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/null")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/zero")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/cores/"/i),require-not(file-mode("#o0000"))])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/db/mds/[0-9]+$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/db/mds/[0-9]+/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/C/mds$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/C/mds/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/mds/[0-9]+$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/mds/[0-9]+/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("mDNSOffloadUserClient")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("NVEthernetUserClientMDNS")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("wlDNSOffloadUserClient")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awacs")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.blued")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bsd.dirhelper")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications.2")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponderHelper")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ocspd")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SecurityServer")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.snhelper")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.DirectoryService.libinfo_v1")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webcontentfilter.dns")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.d2d.ipc")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("system-socket"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/AppleInternal/Library/Conference/Environments.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/AppleInternal/Library/Preferences/com.apple.airplay.dashboard.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/CoreMotion/CoreMotion.log")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.airplay.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.audio.virtualaudio.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.celestial.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.conference.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.facetime.bag.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.facetime.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ids.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imessage.bag.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences-sounds.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.settings.bluetooth.audio-route.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VideoConference.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VideoProcessing.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/tmp/AirTunesHALPlugin.log")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/sbin/mediaserverd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd/"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/AirPlay[.]log"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/mediaserverd"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/logs/mediaserverd/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/awd/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/DCIM/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Downloads/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Music/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Sync/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoStreamsData/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Recordings/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/wireless/Library/Logs/awd/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/local/lib/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/local/share/firmware/isp/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/sbin/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/CoreMotion")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/CoreMotion/CoreMotion.log")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/tmp/AirTunesHALPlugin.log")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd/"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/AirPlay[.]log"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/mediaserverd"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]airplay[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]audio[.]virtualaudio[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]avfoundation[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]celestial[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]conference[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]coreaudio[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]coremedia[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]facetime[.]bag[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]facetime[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]imessage[.]bag[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/logs/mediaserverd/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/awd/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/DCIM/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Downloads/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Music/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/PhotoData/Sync/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/PhotoStreamsData/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Recordings/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/Library/Logs/awd/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH2CamInUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH3CamInUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH4CamInUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH6CamInUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXD375UserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXD390UserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXD393UserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXE380UserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("H3H264VideoEncoderDriverUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccessoryManagerUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAudio2DeviceUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAudio2TransformerUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAudioCodecsUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDLibUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDResourceDeviceUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOStreamAudioUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOUSBInterfaceUserClientV2")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^[0-9A-F][0-9A-F]:+[0-9A-F][0-9A-F]-tacl$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleABL[.]."/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAudioQueue[.]."/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAudioQueue[.].+"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAURemoteIO[.]."/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAURemoteIO[.].+"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^com[.]apple[.]audio[.]abl[.]"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^shm_notif[.][^.]+[.][RW]$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_acl")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_read")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_write")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.SystemSounds")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.virtualdisplayserver")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.filesystems.userfsd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.distributednotification.server")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.xpc")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.distributednotification.server")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.xpc")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lskdd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.NetworkLinkConditioner")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securekeyvaultd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WirelessCoexManager")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.midiserver.io")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]coremedia[.]"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("*:*"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:*"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([remote(udp("*:*"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),debug-mode,literal("/usr/bin/syslog")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),debug-mode,literal("/usr/bin/trace")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/usr/sbin/mediaserverd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-fork"),filters([debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("system-suspend-resume"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),literal("/private/var/mobile/Library/VoiceServices")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),subpath("/private/var/mobile/Library/Assets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),subpath("/private/var/mobile/Library/PreinstalledAssets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/VoiceServices")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/mobileassetd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/mobileassetd$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/mobileassetd/"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Cookies$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/PreinstalledAssets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/PreinstalledAssets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/root/Library/Caches/mobileassetd/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/VoiceServices")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/mobileassetd$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/mobileassetd/"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Cookies$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Assets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/PreinstalledAssets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Caches/mobileassetd/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("system-sched"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.calendardiagnostics.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.timezones.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal-"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Calendar$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Calendar/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/Calendar$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/Calendar/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobilecal.savedState/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobilecal-.+[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobilecal[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Frameworks/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/MobileCal.app/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Ringtones/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobilecal.savedState"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Calendar$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Calendar/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/Calendar$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/Calendar/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]calendardiagnostics[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]timezones[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal-"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobilecal.savedState/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("MobileCal"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-data"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/GeoJSON$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-data"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/GeoJSON$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences/SystemConfiguration")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Applications")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/aes_0")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/null")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/ptmx")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/random")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/urandom")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/zero")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/Library/Preferences/SystemConfiguration/com.apple.afc.DeviceInfo.plist")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/private/var/mobile/Library/Preferences/com.apple.afc.plist")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec/mobile_house_arrest")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.backedup.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.internal.Voltaire.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Maps.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mms_override.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.weather.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.skyhookwireless.wps.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/GeoJSON"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]Maps"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]Maps"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/.+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps-"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Maps[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]Maps.savedState/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]Maps-.+[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]Maps[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/group")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/hosts")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/passwd")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/protocols")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/services")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Ringtones/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Bundles/MapsInternalExtras.bundle/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/Maps.app/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/Maps/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Maps/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]Maps.savedState"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/GeoJSON"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]Maps"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]Maps"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistant[.]backedup[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistant[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GMM[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]internal[.]Voltaire[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Maps[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]skyhookwireless[.]wps[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/.+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps-"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Maps[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]Maps.savedState/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(directory),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Maps/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Maps/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([debug-mode,regex("^/private/var/mobile/Media/Pano_[0-9]"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/AppleInternal/Library/Preferences/com.apple.airplay.dashboard.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/awd")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/awd/awdComponent0x19.log")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/MobileSlideShow.log")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.act.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.airplay.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.compass.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.ImageCaptureFramework.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mms_override.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.videouploadplugins.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.notbackedup.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera-"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow-"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]camera[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]camera.savedState/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobileslideshow.savedState/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]camera-.*[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobileslideshow-.+[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/Snapshots/com.apple.camera/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/iTunes Library.itlp/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/awd")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]camera.savedState"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobileslideshow.savedState"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),debug-mode,regex("^/private/var/mobile/Media/Pano_[0-9]"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/awd/awdComponent0x19.log")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/MobileSlideShow.log")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Camera-latest[.]log"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]camera[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]videouploadplugins[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]notbackedup[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera-"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow-"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]camera[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]camera.savedState/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobileslideshow.savedState/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Snapshots/com.apple.camera/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mnt/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS-"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MobileSMS-.+[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/Library/Dictionaries/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/Library/Ringtones/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS-"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("nointernet"),decision("allow"),operation("file-chroot"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
+profileRule(profile("nointernet"),decision("allow"),operation("fileSTAR"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
+profileRule(profile("nointernet"),decision("allow"),operation("file-write-create"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
+profileRule(profile("nointernet"),decision("allow"),operation("network-bind"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
+profileRule(profile("nointernet"),decision("allow"),operation("network-inbound"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
+profileRule(profile("nointernet"),decision("allow"),operation("network-outbound"),filters([regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)])).
+profileRule(profile("nointernet"),decision("allow"),operation("network-outbound"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
+profileRule(profile("nointernet"),decision("allow"),operation("networkSTAR"),filters([local(ip("*:*"))])).
+profileRule(profile("nointernet"),decision("allow"),operation("networkSTAR"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.nsnetworkd.readonly"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-journal")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-shm")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-wal")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Duet.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.nsnetworkd.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/Caches/com[.]apple[.]nsnetworkd/"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/com.apple.nsnetworkd/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/Caches/com[.]apple[.]nsnetworkd$"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-journal")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-shm")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-wal")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/Caches/com[.]apple[.]nsnetworkd/"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/com[.]apple[.]nsnetworkd/"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]nsnetworkd[.]plist"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/com.apple.nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.xpc")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("passd"),decision("allow"),operation("distributed-notification-post"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("passd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("passd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.passd.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd/"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]passd"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]passd"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Passes/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("passd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd/"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]passd"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]passd"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]passd[.]plist"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Passes/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("passd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("passd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.carditemscontroller")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("passd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("passd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("passd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("passd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("passd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIKit.pboard/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.UIKit.pboard/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/Frameworks/UIKit.framework/Support/pasteboardd")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/pfm")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/pfm")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("pfd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/pfm")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("pfd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("pfd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("pfd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("pfd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("pfd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("pfd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("printd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("printd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("printd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("printd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("printd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("printd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.printd.plist")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd$"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd/"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/com.apple.printd/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/run/printd/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("printd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("printd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd$"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd/"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]printd[.]plist"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/com.apple.printd/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/printd/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("printd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("printd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("printd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("*:*"))])).
+profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("printd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("printd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("printd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("printd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([literal("/abc/ds")])).
+profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("safari")])])).
+profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("webapp")])])).
+profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("ally")])).
+profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("guard")])).
+profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/"),extension("librarian"),require-not(regex("^/reggie1$"/i)),require-not(regex("^/reggie2$"/i))])).
+profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/readpri/")])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([literal("/abc/ds")])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/Sys1$"/i)])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/Sys2$"/i)])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("safari")])])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("webapp")])])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/mobile/"),extension("ally")])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/mobile/"),extension("guard")])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/"),extension("librarian")])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/writepri/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ImageCaptureFramework.plist")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/ptpd[.]log$"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/"))])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/ptpd[.]log$"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]ImageCaptureFramework[.]plist"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("ptpd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ptpd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("ptpd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("ptpd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("ptpd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("ptpd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("ptpd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.quicklook.readonly"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.quicklook.readonly")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd-"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]quicklook[.]quicklookd[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]quicklook[.]quicklookd.savedState/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]quicklook[.]quicklookd-.+[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]quicklook[.]quicklookd[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/quicklookd.app/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]quicklook[.]quicklookd.savedState"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd-"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]quicklook[.]quicklookd[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]quicklook[.]quicklookd.savedState/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/sha1_0")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/preferences/SystemConfiguration/com.apple.ipsec.plist")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/etc/master.passwd/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/etc/racoon/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/racoon/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/etc")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/etc/localtime")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/tmp")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/var")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/private/var/db/dyld/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/System/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/lib/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/sbin/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/share/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/sha1_0")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/db/mds/messages/se_SecurityMessages")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.ipsec.plist")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Managed Preferences/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Preferences/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/master.passwd/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/racoon/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/root/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/run/racoon/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Keychains/System.keychain")])).
+profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/mds/system/mdsDirectory.db")])).
+profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/mds/system/mds.lock")])).
+profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/mds/system/mdsObject.db")])).
+profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/log/racoon.log")])).
+profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/var/log/racoon.log")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/null")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/sha1_0")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/zero")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/racoon.pid")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/racoon.sock")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/cores/"/i),require-not(file-mode("#o0000"))])).
+profileRule(profile("racoon"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("racoon"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
+profileRule(profile("racoon"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("racoon"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("com.apple.AppleDatabaseChanged")])).
+profileRule(profile("racoon"),decision("allow"),operation("ipc-posixSTAR"),filters([ipc-posix-name("com.apple.securityd")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bsd.dirhelper")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ocspd")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SecurityServer")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.DirectoryService.libinfo_v1")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.net.ipsec_control")])).
+profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
+profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([subpath("/private/var/tmp/launchd/")])).
+profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/racoon.sock")])).
+profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:4500"))])).
+profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:500"))])).
+profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),remote(udp("*:*"))])).
+profileRule(profile("racoon"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("racoon"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("sysctlSTAR"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("sysctl-write"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("racoon"),decision("allow"),operation("system-socket"),filters([])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([literal("/abc/ds")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("ally"),extension("hexproof")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("ally"),extension("vigilance")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("guard"),extension("hexproof")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("guard"),extension("vigilance")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("flying"),extension("hexproof")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("flying"),extension("vigilance")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("trample"),extension("hexproof")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("trample"),extension("vigilance")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/readpri/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/MobileSoftwareUpdate")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/MobileSoftwareUpdate")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSoftwareUpdate.plist")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/MobileSoftwareUpdate/restore.log")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/MobileSoftwareUpdate")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/MobileSoftwareUpdate/restore.log")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/OTAUpdate-"/i)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/aes_0")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/dtracehelper")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/null")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/ptmx")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/random")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/urandom")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/zero")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.stocks.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks-"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]stocks[.]plist"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Stocks$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Stocks/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]stocks-.+[.]plist"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]stocks[.]plist"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/Library/Dictionaries/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks-"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]stocks[.]plist"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Stocks$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Stocks/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("Stocks"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("Stocks"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("Stocks"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("Stocks"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("Stocks"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.StreamingUnzipService")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.StreamingUnzipService.plist")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.StreamingUnzipService")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]StreamingUnzipService[.]plist"/i)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences/"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//Library/SyncedPreferences$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//Library/SyncedPreferences/"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd/"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SyncedPreferences/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences/"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications//Library/SyncedPreferences$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications//Library/SyncedPreferences/"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd/"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SyncedPreferences/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("signal"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("transitd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("transitd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Application Support/Containers$"/i)])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Application Support/Containers/"/i)])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Applications/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Inboxes/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/spool/mdt/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("transitd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("transitd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("transitd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("transitd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("transitd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("transitd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd$"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd/"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd$"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd/"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("userfsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.filesystems.userfs_helper")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("userfsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("userfsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("userfsd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/Filesystems/exfat.fs/Contents/Resources/fsck_exfat")])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-fork"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("userfsd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/disk[0-9]+"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/rdisk[0-9]+"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/disk[0-9]+"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/rdisk[0-9]+"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper$"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper/"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/disk[0-9]+"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/rdisk[0-9]+"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper$"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper/"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Vibrations/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/Vibrations")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Vibrations/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i),extension("com.apple.vpn-plugin")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+.vpnplugin$"/i),extension("com.apple.vpn-plugin")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+.vpnplugin/"/i),extension("com.apple.vpn-plugin")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/tmp/")),require-not(subpath("/private/var/mobile/Library/")),require-not(subpath("/private/var/mobile/Library/Preferences/")),require-not(subpath("/private/var/logs/")),require-not(subpath("/private/var/ea/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i))])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-sem"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("mach-register"),filters([global-name("com.f5.f5_sslvpn_plugin")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebSheet.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet-"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebSheet[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]WebSheet.savedState/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]WebSheet-.+[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]WebSheet[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/Library/Dictionaries/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/WebSheet.app/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]WebSheet.savedState"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebSheet[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet-"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebSheet[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]WebSheet.savedState/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.certui.relay")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.eventpump")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.messageuiservices")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilesafari-settings")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networking.captivenetworksupport")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Applications/WebSheet.app/WebSheet")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/parser.out b/profile_compilation/parser.out
new file mode 100644
index 0000000..2f60ddc
--- /dev/null
+++ b/profile_compilation/parser.out
@@ -0,0 +1,947 @@
+Created by PLY version 3.11 (http://www.dabeaz.com/ply)
+
+Unused terminals:
+
+    TK_BOOL
+
+Grammar
+
+Rule 0     S' -> profile
+Rule 1     profile -> version default ruleList
+Rule 2     version -> TK_LPAREN TK_VERSION TK_OTHERTYPE TK_RPAREN
+Rule 3     default -> TK_LPAREN decision TK_DEFAULT TK_RPAREN
+Rule 4     decision -> TK_ALLOW
+Rule 5     decision -> TK_DENY
+Rule 6     ruleList -> rule ruleList
+Rule 7     ruleList -> <empty>
+Rule 8     rule -> TK_LPAREN decision action objectList TK_RPAREN
+Rule 9     rule -> TK_LPAREN decision action TK_RPAREN
+Rule 10    action -> TK_OTHERTYPE
+Rule 11    objectList -> TK_LPAREN object TK_RPAREN objectList
+Rule 12    objectList -> TK_LPAREN object TK_RPAREN
+Rule 13    objectList -> requireAny objectList
+Rule 14    objectList -> requireAll objectList
+Rule 15    objectList -> requireAny
+Rule 16    objectList -> requireAll
+Rule 17    requireAny -> TK_LPAREN TK_REQANY objectList TK_RPAREN
+Rule 18    requireAll -> TK_LPAREN TK_REQALL objectList TK_RPAREN
+Rule 19    requireAll -> reqEnt objectList TK_RPAREN
+Rule 20    requireAll -> reqEnt TK_RPAREN
+Rule 21    reqEnt -> TK_LPAREN TK_REQENT TK_FILTER
+Rule 22    object -> otherType TK_FILTER
+Rule 23    object -> regexFilter
+Rule 24    object -> otherType otherType
+Rule 25    object -> otherType otherType TK_FILTER
+Rule 26    object -> subpath
+Rule 27    object -> prefix
+Rule 28    object -> filemode
+Rule 29    object -> TK_REQNOT TK_LPAREN object TK_RPAREN
+Rule 30    object -> TK_REQNOT TK_LPAREN simpleEntValObject TK_RPAREN
+Rule 31    object -> TK_VNODETYPE otherType
+Rule 32    object -> otherType TK_LPAREN otherType TK_FILTER otherType TK_RPAREN
+Rule 33    object -> TK_DEBUGMODE
+Rule 34    filemode -> TK_FILEMODETYPE TK_MODENUMBER
+Rule 35    subpath -> TK_SUBPATH TK_FILTER
+Rule 36    prefix -> TK_LPREFIX TK_FILTER
+Rule 37    prefix -> TK_SPREFIX TK_FILTER
+Rule 38    prefix -> TK_RPREFIX TK_FILTER
+Rule 39    simpleEntValObject -> TK_REQENT TK_FILTER
+Rule 40    otherType -> TK_OTHERTYPE
+Rule 41    regexFilter -> TK_OTHERTYPE regexList
+Rule 42    regexList -> TK_REGEXPRESSION regexList
+Rule 43    regexList -> TK_REGEXPRESSION
+
+Terminals, with rules where they appear
+
+TK_ALLOW             : 4
+TK_BOOL              : 
+TK_DEBUGMODE         : 33
+TK_DEFAULT           : 3
+TK_DENY              : 5
+TK_FILEMODETYPE      : 34
+TK_FILTER            : 21 22 25 32 35 36 37 38 39
+TK_LPAREN            : 2 3 8 9 11 12 17 18 21 29 30 32
+TK_LPREFIX           : 36
+TK_MODENUMBER        : 34
+TK_OTHERTYPE         : 2 10 40 41
+TK_REGEXPRESSION     : 42 43
+TK_REQALL            : 18
+TK_REQANY            : 17
+TK_REQENT            : 21 39
+TK_REQNOT            : 29 30
+TK_RPAREN            : 2 3 8 9 11 12 17 18 19 20 29 30 32
+TK_RPREFIX           : 38
+TK_SPREFIX           : 37
+TK_SUBPATH           : 35
+TK_VERSION           : 2
+TK_VNODETYPE         : 31
+error                : 
+
+Nonterminals, with rules where they appear
+
+action               : 8 9
+decision             : 3 8 9
+default              : 1
+filemode             : 28
+object               : 11 12 29
+objectList           : 8 11 13 14 17 18 19
+otherType            : 22 24 24 25 25 31 32 32 32
+prefix               : 27
+profile              : 0
+regexFilter          : 23
+regexList            : 41 42
+reqEnt               : 19 20
+requireAll           : 14 16
+requireAny           : 13 15
+rule                 : 6
+ruleList             : 1 6
+simpleEntValObject   : 30
+subpath              : 26
+version              : 1
+
+Parsing method: LALR
+
+state 0
+
+    (0) S' -> . profile
+    (1) profile -> . version default ruleList
+    (2) version -> . TK_LPAREN TK_VERSION TK_OTHERTYPE TK_RPAREN
+
+    TK_LPAREN       shift and go to state 3
+
+    profile                        shift and go to state 1
+    version                        shift and go to state 2
+
+state 1
+
+    (0) S' -> profile .
+
+
+
+state 2
+
+    (1) profile -> version . default ruleList
+    (3) default -> . TK_LPAREN decision TK_DEFAULT TK_RPAREN
+
+    TK_LPAREN       shift and go to state 5
+
+    default                        shift and go to state 4
+
+state 3
+
+    (2) version -> TK_LPAREN . TK_VERSION TK_OTHERTYPE TK_RPAREN
+
+    TK_VERSION      shift and go to state 6
+
+
+state 4
+
+    (1) profile -> version default . ruleList
+    (6) ruleList -> . rule ruleList
+    (7) ruleList -> .
+    (8) rule -> . TK_LPAREN decision action objectList TK_RPAREN
+    (9) rule -> . TK_LPAREN decision action TK_RPAREN
+
+    $end            reduce using rule 7 (ruleList -> .)
+    TK_LPAREN       shift and go to state 9
+
+    ruleList                       shift and go to state 7
+    rule                           shift and go to state 8
+
+state 5
+
+    (3) default -> TK_LPAREN . decision TK_DEFAULT TK_RPAREN
+    (4) decision -> . TK_ALLOW
+    (5) decision -> . TK_DENY
+
+    TK_ALLOW        shift and go to state 11
+    TK_DENY         shift and go to state 12
+
+    decision                       shift and go to state 10
+
+state 6
+
+    (2) version -> TK_LPAREN TK_VERSION . TK_OTHERTYPE TK_RPAREN
+
+    TK_OTHERTYPE    shift and go to state 13
+
+
+state 7
+
+    (1) profile -> version default ruleList .
+
+    $end            reduce using rule 1 (profile -> version default ruleList .)
+
+
+state 8
+
+    (6) ruleList -> rule . ruleList
+    (6) ruleList -> . rule ruleList
+    (7) ruleList -> .
+    (8) rule -> . TK_LPAREN decision action objectList TK_RPAREN
+    (9) rule -> . TK_LPAREN decision action TK_RPAREN
+
+    $end            reduce using rule 7 (ruleList -> .)
+    TK_LPAREN       shift and go to state 9
+
+    rule                           shift and go to state 8
+    ruleList                       shift and go to state 14
+
+state 9
+
+    (8) rule -> TK_LPAREN . decision action objectList TK_RPAREN
+    (9) rule -> TK_LPAREN . decision action TK_RPAREN
+    (4) decision -> . TK_ALLOW
+    (5) decision -> . TK_DENY
+
+    TK_ALLOW        shift and go to state 11
+    TK_DENY         shift and go to state 12
+
+    decision                       shift and go to state 15
+
+state 10
+
+    (3) default -> TK_LPAREN decision . TK_DEFAULT TK_RPAREN
+
+    TK_DEFAULT      shift and go to state 16
+
+
+state 11
+
+    (4) decision -> TK_ALLOW .
+
+    TK_DEFAULT      reduce using rule 4 (decision -> TK_ALLOW .)
+    TK_OTHERTYPE    reduce using rule 4 (decision -> TK_ALLOW .)
+
+
+state 12
+
+    (5) decision -> TK_DENY .
+
+    TK_DEFAULT      reduce using rule 5 (decision -> TK_DENY .)
+    TK_OTHERTYPE    reduce using rule 5 (decision -> TK_DENY .)
+
+
+state 13
+
+    (2) version -> TK_LPAREN TK_VERSION TK_OTHERTYPE . TK_RPAREN
+
+    TK_RPAREN       shift and go to state 17
+
+
+state 14
+
+    (6) ruleList -> rule ruleList .
+
+    $end            reduce using rule 6 (ruleList -> rule ruleList .)
+
+
+state 15
+
+    (8) rule -> TK_LPAREN decision . action objectList TK_RPAREN
+    (9) rule -> TK_LPAREN decision . action TK_RPAREN
+    (10) action -> . TK_OTHERTYPE
+
+    TK_OTHERTYPE    shift and go to state 19
+
+    action                         shift and go to state 18
+
+state 16
+
+    (3) default -> TK_LPAREN decision TK_DEFAULT . TK_RPAREN
+
+    TK_RPAREN       shift and go to state 20
+
+
+state 17
+
+    (2) version -> TK_LPAREN TK_VERSION TK_OTHERTYPE TK_RPAREN .
+
+    TK_LPAREN       reduce using rule 2 (version -> TK_LPAREN TK_VERSION TK_OTHERTYPE TK_RPAREN .)
+
+
+state 18
+
+    (8) rule -> TK_LPAREN decision action . objectList TK_RPAREN
+    (9) rule -> TK_LPAREN decision action . TK_RPAREN
+    (11) objectList -> . TK_LPAREN object TK_RPAREN objectList
+    (12) objectList -> . TK_LPAREN object TK_RPAREN
+    (13) objectList -> . requireAny objectList
+    (14) objectList -> . requireAll objectList
+    (15) objectList -> . requireAny
+    (16) objectList -> . requireAll
+    (17) requireAny -> . TK_LPAREN TK_REQANY objectList TK_RPAREN
+    (18) requireAll -> . TK_LPAREN TK_REQALL objectList TK_RPAREN
+    (19) requireAll -> . reqEnt objectList TK_RPAREN
+    (20) requireAll -> . reqEnt TK_RPAREN
+    (21) reqEnt -> . TK_LPAREN TK_REQENT TK_FILTER
+
+    TK_RPAREN       shift and go to state 23
+    TK_LPAREN       shift and go to state 21
+
+    objectList                     shift and go to state 22
+    requireAny                     shift and go to state 24
+    requireAll                     shift and go to state 25
+    reqEnt                         shift and go to state 26
+
+state 19
+
+    (10) action -> TK_OTHERTYPE .
+
+    TK_RPAREN       reduce using rule 10 (action -> TK_OTHERTYPE .)
+    TK_LPAREN       reduce using rule 10 (action -> TK_OTHERTYPE .)
+
+
+state 20
+
+    (3) default -> TK_LPAREN decision TK_DEFAULT TK_RPAREN .
+
+    TK_LPAREN       reduce using rule 3 (default -> TK_LPAREN decision TK_DEFAULT TK_RPAREN .)
+    $end            reduce using rule 3 (default -> TK_LPAREN decision TK_DEFAULT TK_RPAREN .)
+
+
+state 21
+
+    (11) objectList -> TK_LPAREN . object TK_RPAREN objectList
+    (12) objectList -> TK_LPAREN . object TK_RPAREN
+    (17) requireAny -> TK_LPAREN . TK_REQANY objectList TK_RPAREN
+    (18) requireAll -> TK_LPAREN . TK_REQALL objectList TK_RPAREN
+    (21) reqEnt -> TK_LPAREN . TK_REQENT TK_FILTER
+    (22) object -> . otherType TK_FILTER
+    (23) object -> . regexFilter
+    (24) object -> . otherType otherType
+    (25) object -> . otherType otherType TK_FILTER
+    (26) object -> . subpath
+    (27) object -> . prefix
+    (28) object -> . filemode
+    (29) object -> . TK_REQNOT TK_LPAREN object TK_RPAREN
+    (30) object -> . TK_REQNOT TK_LPAREN simpleEntValObject TK_RPAREN
+    (31) object -> . TK_VNODETYPE otherType
+    (32) object -> . otherType TK_LPAREN otherType TK_FILTER otherType TK_RPAREN
+    (33) object -> . TK_DEBUGMODE
+    (40) otherType -> . TK_OTHERTYPE
+    (41) regexFilter -> . TK_OTHERTYPE regexList
+    (35) subpath -> . TK_SUBPATH TK_FILTER
+    (36) prefix -> . TK_LPREFIX TK_FILTER
+    (37) prefix -> . TK_SPREFIX TK_FILTER
+    (38) prefix -> . TK_RPREFIX TK_FILTER
+    (34) filemode -> . TK_FILEMODETYPE TK_MODENUMBER
+
+    TK_REQANY       shift and go to state 28
+    TK_REQALL       shift and go to state 29
+    TK_REQENT       shift and go to state 30
+    TK_REQNOT       shift and go to state 36
+    TK_VNODETYPE    shift and go to state 37
+    TK_DEBUGMODE    shift and go to state 38
+    TK_OTHERTYPE    shift and go to state 39
+    TK_SUBPATH      shift and go to state 40
+    TK_LPREFIX      shift and go to state 41
+    TK_SPREFIX      shift and go to state 42
+    TK_RPREFIX      shift and go to state 43
+    TK_FILEMODETYPE shift and go to state 44
+
+    object                         shift and go to state 27
+    otherType                      shift and go to state 31
+    regexFilter                    shift and go to state 32
+    subpath                        shift and go to state 33
+    prefix                         shift and go to state 34
+    filemode                       shift and go to state 35
+
+state 22
+
+    (8) rule -> TK_LPAREN decision action objectList . TK_RPAREN
+
+    TK_RPAREN       shift and go to state 45
+
+
+state 23
+
+    (9) rule -> TK_LPAREN decision action TK_RPAREN .
+
+    TK_LPAREN       reduce using rule 9 (rule -> TK_LPAREN decision action TK_RPAREN .)
+    $end            reduce using rule 9 (rule -> TK_LPAREN decision action TK_RPAREN .)
+
+
+state 24
+
+    (13) objectList -> requireAny . objectList
+    (15) objectList -> requireAny .
+    (11) objectList -> . TK_LPAREN object TK_RPAREN objectList
+    (12) objectList -> . TK_LPAREN object TK_RPAREN
+    (13) objectList -> . requireAny objectList
+    (14) objectList -> . requireAll objectList
+    (15) objectList -> . requireAny
+    (16) objectList -> . requireAll
+    (17) requireAny -> . TK_LPAREN TK_REQANY objectList TK_RPAREN
+    (18) requireAll -> . TK_LPAREN TK_REQALL objectList TK_RPAREN
+    (19) requireAll -> . reqEnt objectList TK_RPAREN
+    (20) requireAll -> . reqEnt TK_RPAREN
+    (21) reqEnt -> . TK_LPAREN TK_REQENT TK_FILTER
+
+    TK_RPAREN       reduce using rule 15 (objectList -> requireAny .)
+    TK_LPAREN       shift and go to state 21
+
+    requireAny                     shift and go to state 24
+    objectList                     shift and go to state 46
+    requireAll                     shift and go to state 25
+    reqEnt                         shift and go to state 26
+
+state 25
+
+    (14) objectList -> requireAll . objectList
+    (16) objectList -> requireAll .
+    (11) objectList -> . TK_LPAREN object TK_RPAREN objectList
+    (12) objectList -> . TK_LPAREN object TK_RPAREN
+    (13) objectList -> . requireAny objectList
+    (14) objectList -> . requireAll objectList
+    (15) objectList -> . requireAny
+    (16) objectList -> . requireAll
+    (17) requireAny -> . TK_LPAREN TK_REQANY objectList TK_RPAREN
+    (18) requireAll -> . TK_LPAREN TK_REQALL objectList TK_RPAREN
+    (19) requireAll -> . reqEnt objectList TK_RPAREN
+    (20) requireAll -> . reqEnt TK_RPAREN
+    (21) reqEnt -> . TK_LPAREN TK_REQENT TK_FILTER
+
+    TK_RPAREN       reduce using rule 16 (objectList -> requireAll .)
+    TK_LPAREN       shift and go to state 21
+
+    requireAll                     shift and go to state 25
+    objectList                     shift and go to state 47
+    requireAny                     shift and go to state 24
+    reqEnt                         shift and go to state 26
+
+state 26
+
+    (19) requireAll -> reqEnt . objectList TK_RPAREN
+    (20) requireAll -> reqEnt . TK_RPAREN
+    (11) objectList -> . TK_LPAREN object TK_RPAREN objectList
+    (12) objectList -> . TK_LPAREN object TK_RPAREN
+    (13) objectList -> . requireAny objectList
+    (14) objectList -> . requireAll objectList
+    (15) objectList -> . requireAny
+    (16) objectList -> . requireAll
+    (17) requireAny -> . TK_LPAREN TK_REQANY objectList TK_RPAREN
+    (18) requireAll -> . TK_LPAREN TK_REQALL objectList TK_RPAREN
+    (19) requireAll -> . reqEnt objectList TK_RPAREN
+    (20) requireAll -> . reqEnt TK_RPAREN
+    (21) reqEnt -> . TK_LPAREN TK_REQENT TK_FILTER
+
+    TK_RPAREN       shift and go to state 49
+    TK_LPAREN       shift and go to state 21
+
+    reqEnt                         shift and go to state 26
+    objectList                     shift and go to state 48
+    requireAny                     shift and go to state 24
+    requireAll                     shift and go to state 25
+
+state 27
+
+    (11) objectList -> TK_LPAREN object . TK_RPAREN objectList
+    (12) objectList -> TK_LPAREN object . TK_RPAREN
+
+    TK_RPAREN       shift and go to state 50
+
+
+state 28
+
+    (17) requireAny -> TK_LPAREN TK_REQANY . objectList TK_RPAREN
+    (11) objectList -> . TK_LPAREN object TK_RPAREN objectList
+    (12) objectList -> . TK_LPAREN object TK_RPAREN
+    (13) objectList -> . requireAny objectList
+    (14) objectList -> . requireAll objectList
+    (15) objectList -> . requireAny
+    (16) objectList -> . requireAll
+    (17) requireAny -> . TK_LPAREN TK_REQANY objectList TK_RPAREN
+    (18) requireAll -> . TK_LPAREN TK_REQALL objectList TK_RPAREN
+    (19) requireAll -> . reqEnt objectList TK_RPAREN
+    (20) requireAll -> . reqEnt TK_RPAREN
+    (21) reqEnt -> . TK_LPAREN TK_REQENT TK_FILTER
+
+    TK_LPAREN       shift and go to state 21
+
+    objectList                     shift and go to state 51
+    requireAny                     shift and go to state 24
+    requireAll                     shift and go to state 25
+    reqEnt                         shift and go to state 26
+
+state 29
+
+    (18) requireAll -> TK_LPAREN TK_REQALL . objectList TK_RPAREN
+    (11) objectList -> . TK_LPAREN object TK_RPAREN objectList
+    (12) objectList -> . TK_LPAREN object TK_RPAREN
+    (13) objectList -> . requireAny objectList
+    (14) objectList -> . requireAll objectList
+    (15) objectList -> . requireAny
+    (16) objectList -> . requireAll
+    (17) requireAny -> . TK_LPAREN TK_REQANY objectList TK_RPAREN
+    (18) requireAll -> . TK_LPAREN TK_REQALL objectList TK_RPAREN
+    (19) requireAll -> . reqEnt objectList TK_RPAREN
+    (20) requireAll -> . reqEnt TK_RPAREN
+    (21) reqEnt -> . TK_LPAREN TK_REQENT TK_FILTER
+
+    TK_LPAREN       shift and go to state 21
+
+    objectList                     shift and go to state 52
+    requireAny                     shift and go to state 24
+    requireAll                     shift and go to state 25
+    reqEnt                         shift and go to state 26
+
+state 30
+
+    (21) reqEnt -> TK_LPAREN TK_REQENT . TK_FILTER
+
+    TK_FILTER       shift and go to state 53
+
+
+state 31
+
+    (22) object -> otherType . TK_FILTER
+    (24) object -> otherType . otherType
+    (25) object -> otherType . otherType TK_FILTER
+    (32) object -> otherType . TK_LPAREN otherType TK_FILTER otherType TK_RPAREN
+    (40) otherType -> . TK_OTHERTYPE
+
+    TK_FILTER       shift and go to state 55
+    TK_LPAREN       shift and go to state 56
+    TK_OTHERTYPE    shift and go to state 57
+
+    otherType                      shift and go to state 54
+
+state 32
+
+    (23) object -> regexFilter .
+
+    TK_RPAREN       reduce using rule 23 (object -> regexFilter .)
+
+
+state 33
+
+    (26) object -> subpath .
+
+    TK_RPAREN       reduce using rule 26 (object -> subpath .)
+
+
+state 34
+
+    (27) object -> prefix .
+
+    TK_RPAREN       reduce using rule 27 (object -> prefix .)
+
+
+state 35
+
+    (28) object -> filemode .
+
+    TK_RPAREN       reduce using rule 28 (object -> filemode .)
+
+
+state 36
+
+    (29) object -> TK_REQNOT . TK_LPAREN object TK_RPAREN
+    (30) object -> TK_REQNOT . TK_LPAREN simpleEntValObject TK_RPAREN
+
+    TK_LPAREN       shift and go to state 58
+
+
+state 37
+
+    (31) object -> TK_VNODETYPE . otherType
+    (40) otherType -> . TK_OTHERTYPE
+
+    TK_OTHERTYPE    shift and go to state 57
+
+    otherType                      shift and go to state 59
+
+state 38
+
+    (33) object -> TK_DEBUGMODE .
+
+    TK_RPAREN       reduce using rule 33 (object -> TK_DEBUGMODE .)
+
+
+state 39
+
+    (40) otherType -> TK_OTHERTYPE .
+    (41) regexFilter -> TK_OTHERTYPE . regexList
+    (42) regexList -> . TK_REGEXPRESSION regexList
+    (43) regexList -> . TK_REGEXPRESSION
+
+    TK_FILTER       reduce using rule 40 (otherType -> TK_OTHERTYPE .)
+    TK_LPAREN       reduce using rule 40 (otherType -> TK_OTHERTYPE .)
+    TK_OTHERTYPE    reduce using rule 40 (otherType -> TK_OTHERTYPE .)
+    TK_REGEXPRESSION shift and go to state 61
+
+    regexList                      shift and go to state 60
+
+state 40
+
+    (35) subpath -> TK_SUBPATH . TK_FILTER
+
+    TK_FILTER       shift and go to state 62
+
+
+state 41
+
+    (36) prefix -> TK_LPREFIX . TK_FILTER
+
+    TK_FILTER       shift and go to state 63
+
+
+state 42
+
+    (37) prefix -> TK_SPREFIX . TK_FILTER
+
+    TK_FILTER       shift and go to state 64
+
+
+state 43
+
+    (38) prefix -> TK_RPREFIX . TK_FILTER
+
+    TK_FILTER       shift and go to state 65
+
+
+state 44
+
+    (34) filemode -> TK_FILEMODETYPE . TK_MODENUMBER
+
+    TK_MODENUMBER   shift and go to state 66
+
+
+state 45
+
+    (8) rule -> TK_LPAREN decision action objectList TK_RPAREN .
+
+    TK_LPAREN       reduce using rule 8 (rule -> TK_LPAREN decision action objectList TK_RPAREN .)
+    $end            reduce using rule 8 (rule -> TK_LPAREN decision action objectList TK_RPAREN .)
+
+
+state 46
+
+    (13) objectList -> requireAny objectList .
+
+    TK_RPAREN       reduce using rule 13 (objectList -> requireAny objectList .)
+
+
+state 47
+
+    (14) objectList -> requireAll objectList .
+
+    TK_RPAREN       reduce using rule 14 (objectList -> requireAll objectList .)
+
+
+state 48
+
+    (19) requireAll -> reqEnt objectList . TK_RPAREN
+
+    TK_RPAREN       shift and go to state 67
+
+
+state 49
+
+    (20) requireAll -> reqEnt TK_RPAREN .
+
+    TK_LPAREN       reduce using rule 20 (requireAll -> reqEnt TK_RPAREN .)
+    TK_RPAREN       reduce using rule 20 (requireAll -> reqEnt TK_RPAREN .)
+
+
+state 50
+
+    (11) objectList -> TK_LPAREN object TK_RPAREN . objectList
+    (12) objectList -> TK_LPAREN object TK_RPAREN .
+    (11) objectList -> . TK_LPAREN object TK_RPAREN objectList
+    (12) objectList -> . TK_LPAREN object TK_RPAREN
+    (13) objectList -> . requireAny objectList
+    (14) objectList -> . requireAll objectList
+    (15) objectList -> . requireAny
+    (16) objectList -> . requireAll
+    (17) requireAny -> . TK_LPAREN TK_REQANY objectList TK_RPAREN
+    (18) requireAll -> . TK_LPAREN TK_REQALL objectList TK_RPAREN
+    (19) requireAll -> . reqEnt objectList TK_RPAREN
+    (20) requireAll -> . reqEnt TK_RPAREN
+    (21) reqEnt -> . TK_LPAREN TK_REQENT TK_FILTER
+
+    TK_RPAREN       reduce using rule 12 (objectList -> TK_LPAREN object TK_RPAREN .)
+    TK_LPAREN       shift and go to state 21
+
+    objectList                     shift and go to state 68
+    requireAny                     shift and go to state 24
+    requireAll                     shift and go to state 25
+    reqEnt                         shift and go to state 26
+
+state 51
+
+    (17) requireAny -> TK_LPAREN TK_REQANY objectList . TK_RPAREN
+
+    TK_RPAREN       shift and go to state 69
+
+
+state 52
+
+    (18) requireAll -> TK_LPAREN TK_REQALL objectList . TK_RPAREN
+
+    TK_RPAREN       shift and go to state 70
+
+
+state 53
+
+    (21) reqEnt -> TK_LPAREN TK_REQENT TK_FILTER .
+
+    TK_RPAREN       reduce using rule 21 (reqEnt -> TK_LPAREN TK_REQENT TK_FILTER .)
+    TK_LPAREN       reduce using rule 21 (reqEnt -> TK_LPAREN TK_REQENT TK_FILTER .)
+
+
+state 54
+
+    (24) object -> otherType otherType .
+    (25) object -> otherType otherType . TK_FILTER
+
+    TK_RPAREN       reduce using rule 24 (object -> otherType otherType .)
+    TK_FILTER       shift and go to state 71
+
+
+state 55
+
+    (22) object -> otherType TK_FILTER .
+
+    TK_RPAREN       reduce using rule 22 (object -> otherType TK_FILTER .)
+
+
+state 56
+
+    (32) object -> otherType TK_LPAREN . otherType TK_FILTER otherType TK_RPAREN
+    (40) otherType -> . TK_OTHERTYPE
+
+    TK_OTHERTYPE    shift and go to state 57
+
+    otherType                      shift and go to state 72
+
+state 57
+
+    (40) otherType -> TK_OTHERTYPE .
+
+    TK_FILTER       reduce using rule 40 (otherType -> TK_OTHERTYPE .)
+    TK_RPAREN       reduce using rule 40 (otherType -> TK_OTHERTYPE .)
+
+
+state 58
+
+    (29) object -> TK_REQNOT TK_LPAREN . object TK_RPAREN
+    (30) object -> TK_REQNOT TK_LPAREN . simpleEntValObject TK_RPAREN
+    (22) object -> . otherType TK_FILTER
+    (23) object -> . regexFilter
+    (24) object -> . otherType otherType
+    (25) object -> . otherType otherType TK_FILTER
+    (26) object -> . subpath
+    (27) object -> . prefix
+    (28) object -> . filemode
+    (29) object -> . TK_REQNOT TK_LPAREN object TK_RPAREN
+    (30) object -> . TK_REQNOT TK_LPAREN simpleEntValObject TK_RPAREN
+    (31) object -> . TK_VNODETYPE otherType
+    (32) object -> . otherType TK_LPAREN otherType TK_FILTER otherType TK_RPAREN
+    (33) object -> . TK_DEBUGMODE
+    (39) simpleEntValObject -> . TK_REQENT TK_FILTER
+    (40) otherType -> . TK_OTHERTYPE
+    (41) regexFilter -> . TK_OTHERTYPE regexList
+    (35) subpath -> . TK_SUBPATH TK_FILTER
+    (36) prefix -> . TK_LPREFIX TK_FILTER
+    (37) prefix -> . TK_SPREFIX TK_FILTER
+    (38) prefix -> . TK_RPREFIX TK_FILTER
+    (34) filemode -> . TK_FILEMODETYPE TK_MODENUMBER
+
+    TK_REQNOT       shift and go to state 36
+    TK_VNODETYPE    shift and go to state 37
+    TK_DEBUGMODE    shift and go to state 38
+    TK_REQENT       shift and go to state 75
+    TK_OTHERTYPE    shift and go to state 39
+    TK_SUBPATH      shift and go to state 40
+    TK_LPREFIX      shift and go to state 41
+    TK_SPREFIX      shift and go to state 42
+    TK_RPREFIX      shift and go to state 43
+    TK_FILEMODETYPE shift and go to state 44
+
+    object                         shift and go to state 73
+    simpleEntValObject             shift and go to state 74
+    otherType                      shift and go to state 31
+    regexFilter                    shift and go to state 32
+    subpath                        shift and go to state 33
+    prefix                         shift and go to state 34
+    filemode                       shift and go to state 35
+
+state 59
+
+    (31) object -> TK_VNODETYPE otherType .
+
+    TK_RPAREN       reduce using rule 31 (object -> TK_VNODETYPE otherType .)
+
+
+state 60
+
+    (41) regexFilter -> TK_OTHERTYPE regexList .
+
+    TK_RPAREN       reduce using rule 41 (regexFilter -> TK_OTHERTYPE regexList .)
+
+
+state 61
+
+    (42) regexList -> TK_REGEXPRESSION . regexList
+    (43) regexList -> TK_REGEXPRESSION .
+    (42) regexList -> . TK_REGEXPRESSION regexList
+    (43) regexList -> . TK_REGEXPRESSION
+
+    TK_RPAREN       reduce using rule 43 (regexList -> TK_REGEXPRESSION .)
+    TK_REGEXPRESSION shift and go to state 61
+
+    regexList                      shift and go to state 76
+
+state 62
+
+    (35) subpath -> TK_SUBPATH TK_FILTER .
+
+    TK_RPAREN       reduce using rule 35 (subpath -> TK_SUBPATH TK_FILTER .)
+
+
+state 63
+
+    (36) prefix -> TK_LPREFIX TK_FILTER .
+
+    TK_RPAREN       reduce using rule 36 (prefix -> TK_LPREFIX TK_FILTER .)
+
+
+state 64
+
+    (37) prefix -> TK_SPREFIX TK_FILTER .
+
+    TK_RPAREN       reduce using rule 37 (prefix -> TK_SPREFIX TK_FILTER .)
+
+
+state 65
+
+    (38) prefix -> TK_RPREFIX TK_FILTER .
+
+    TK_RPAREN       reduce using rule 38 (prefix -> TK_RPREFIX TK_FILTER .)
+
+
+state 66
+
+    (34) filemode -> TK_FILEMODETYPE TK_MODENUMBER .
+
+    TK_RPAREN       reduce using rule 34 (filemode -> TK_FILEMODETYPE TK_MODENUMBER .)
+
+
+state 67
+
+    (19) requireAll -> reqEnt objectList TK_RPAREN .
+
+    TK_LPAREN       reduce using rule 19 (requireAll -> reqEnt objectList TK_RPAREN .)
+    TK_RPAREN       reduce using rule 19 (requireAll -> reqEnt objectList TK_RPAREN .)
+
+
+state 68
+
+    (11) objectList -> TK_LPAREN object TK_RPAREN objectList .
+
+    TK_RPAREN       reduce using rule 11 (objectList -> TK_LPAREN object TK_RPAREN objectList .)
+
+
+state 69
+
+    (17) requireAny -> TK_LPAREN TK_REQANY objectList TK_RPAREN .
+
+    TK_LPAREN       reduce using rule 17 (requireAny -> TK_LPAREN TK_REQANY objectList TK_RPAREN .)
+    TK_RPAREN       reduce using rule 17 (requireAny -> TK_LPAREN TK_REQANY objectList TK_RPAREN .)
+
+
+state 70
+
+    (18) requireAll -> TK_LPAREN TK_REQALL objectList TK_RPAREN .
+
+    TK_LPAREN       reduce using rule 18 (requireAll -> TK_LPAREN TK_REQALL objectList TK_RPAREN .)
+    TK_RPAREN       reduce using rule 18 (requireAll -> TK_LPAREN TK_REQALL objectList TK_RPAREN .)
+
+
+state 71
+
+    (25) object -> otherType otherType TK_FILTER .
+
+    TK_RPAREN       reduce using rule 25 (object -> otherType otherType TK_FILTER .)
+
+
+state 72
+
+    (32) object -> otherType TK_LPAREN otherType . TK_FILTER otherType TK_RPAREN
+
+    TK_FILTER       shift and go to state 77
+
+
+state 73
+
+    (29) object -> TK_REQNOT TK_LPAREN object . TK_RPAREN
+
+    TK_RPAREN       shift and go to state 78
+
+
+state 74
+
+    (30) object -> TK_REQNOT TK_LPAREN simpleEntValObject . TK_RPAREN
+
+    TK_RPAREN       shift and go to state 79
+
+
+state 75
+
+    (39) simpleEntValObject -> TK_REQENT . TK_FILTER
+
+    TK_FILTER       shift and go to state 80
+
+
+state 76
+
+    (42) regexList -> TK_REGEXPRESSION regexList .
+
+    TK_RPAREN       reduce using rule 42 (regexList -> TK_REGEXPRESSION regexList .)
+
+
+state 77
+
+    (32) object -> otherType TK_LPAREN otherType TK_FILTER . otherType TK_RPAREN
+    (40) otherType -> . TK_OTHERTYPE
+
+    TK_OTHERTYPE    shift and go to state 57
+
+    otherType                      shift and go to state 81
+
+state 78
+
+    (29) object -> TK_REQNOT TK_LPAREN object TK_RPAREN .
+
+    TK_RPAREN       reduce using rule 29 (object -> TK_REQNOT TK_LPAREN object TK_RPAREN .)
+
+
+state 79
+
+    (30) object -> TK_REQNOT TK_LPAREN simpleEntValObject TK_RPAREN .
+
+    TK_RPAREN       reduce using rule 30 (object -> TK_REQNOT TK_LPAREN simpleEntValObject TK_RPAREN .)
+
+
+state 80
+
+    (39) simpleEntValObject -> TK_REQENT TK_FILTER .
+
+    TK_RPAREN       reduce using rule 39 (simpleEntValObject -> TK_REQENT TK_FILTER .)
+
+
+state 81
+
+    (32) object -> otherType TK_LPAREN otherType TK_FILTER otherType . TK_RPAREN
+
+    TK_RPAREN       shift and go to state 82
+
+
+state 82
+
+    (32) object -> otherType TK_LPAREN otherType TK_FILTER otherType TK_RPAREN .
+
+    TK_RPAREN       reduce using rule 32 (object -> otherType TK_LPAREN otherType TK_FILTER otherType TK_RPAREN .)
+
diff --git a/profile_compilation/parsetab.py b/profile_compilation/parsetab.py
new file mode 100644
index 0000000..af3cc72
--- /dev/null
+++ b/profile_compilation/parsetab.py
@@ -0,0 +1,73 @@
+
+# parsetab.py
+# This file is automatically generated. Do not edit.
+# pylint: disable=W,C,R
+_tabversion = '3.10'
+
+_lr_method = 'LALR'
+
+_lr_signature = 'TK_ALLOW TK_BOOL TK_DEBUGMODE TK_DEFAULT TK_DENY TK_FILEMODETYPE TK_FILTER TK_LPAREN TK_LPREFIX TK_MODENUMBER TK_OTHERTYPE TK_REGEXPRESSION TK_REQALL TK_REQANY TK_REQENT TK_REQNOT TK_RPAREN TK_RPREFIX TK_SPREFIX TK_SUBPATH TK_VERSION TK_VNODETYPEprofile : version default ruleListversion : TK_LPAREN TK_VERSION TK_OTHERTYPE TK_RPARENdefault \t: TK_LPAREN decision TK_DEFAULT TK_RPARENdecision \t: TK_ALLOW \n                  | TK_DENYruleList \t: rule ruleList\n                  | rule \t: TK_LPAREN decision action objectList TK_RPAREN\n                  | TK_LPAREN decision action TK_RPARENaction \t: TK_OTHERTYPEobjectList : TK_LPAREN object TK_RPAREN objectList\n                  | TK_LPAREN object TK_RPAREN \n                  | requireAny objectList\n                  | requireAll objectList\n                  | requireAny\n                  | requireAll requireAny\t:  TK_LPAREN TK_REQANY objectList TK_RPARENrequireAll\t:  TK_LPAREN TK_REQALL objectList TK_RPAREN\n                  | reqEnt objectList TK_RPAREN\n                  | reqEnt TK_RPARENreqEnt\t: TK_LPAREN TK_REQENT TK_FILTERobject \t: otherType TK_FILTER\n                  | regexFilter\n                  | otherType otherType\n                  | otherType otherType TK_FILTER\n                  | subpath\n                  | prefix\n                  | filemode\n                  | TK_REQNOT TK_LPAREN object TK_RPAREN\n                  | TK_REQNOT TK_LPAREN simpleEntValObject TK_RPAREN\n                  | TK_VNODETYPE otherType\n                  | otherType TK_LPAREN otherType TK_FILTER otherType TK_RPAREN\n                  | TK_DEBUGMODEfilemode : TK_FILEMODETYPE TK_MODENUMBERsubpath\t: TK_SUBPATH TK_FILTERprefix : TK_LPREFIX TK_FILTER\n              | TK_SPREFIX TK_FILTER\n              | TK_RPREFIX TK_FILTERsimpleEntValObject\t: TK_REQENT TK_FILTERotherType : TK_OTHERTYPEregexFilter : TK_OTHERTYPE regexListregexList \t: TK_REGEXPRESSION regexList\n                  | TK_REGEXPRESSION'
+    
+_lr_action_items = {'TK_LPAREN':([0,2,4,8,17,18,19,20,23,24,25,26,28,29,31,36,39,45,49,50,53,67,69,70,],[3,5,9,9,-2,21,-10,-3,-9,21,21,21,21,21,56,58,-40,-8,-20,21,-21,-19,-17,-18,]),'$end':([1,4,7,8,14,20,23,45,],[0,-7,-1,-7,-6,-3,-9,-8,]),'TK_VERSION':([3,],[6,]),'TK_ALLOW':([5,9,],[11,11,]),'TK_DENY':([5,9,],[12,12,]),'TK_OTHERTYPE':([6,11,12,15,21,31,37,39,56,58,77,],[13,-4,-5,19,39,57,57,-40,57,39,57,]),'TK_DEFAULT':([10,11,12,],[16,-4,-5,]),'TK_RPAREN':([13,16,18,19,22,24,25,26,27,32,33,34,35,38,46,47,48,49,50,51,52,53,54,55,57,59,60,61,62,63,64,65,66,67,68,69,70,71,73,74,76,78,79,80,81,82,],[17,20,23,-10,45,-15,-16,49,50,-23,-26,-27,-28,-33,-13,-14,67,-20,-12,69,70,-21,-24,-22,-40,-31,-41,-43,-35,-36,-37,-38,-34,-19,-11,-17,-18,-25,78,79,-42,-29,-30,-39,82,-32,]),'TK_REQANY':([21,],[28,]),'TK_REQALL':([21,],[29,]),'TK_REQENT':([21,58,],[30,75,]),'TK_REQNOT':([21,58,],[36,36,]),'TK_VNODETYPE':([21,58,],[37,37,]),'TK_DEBUGMODE':([21,58,],[38,38,]),'TK_SUBPATH':([21,58,],[40,40,]),'TK_LPREFIX':([21,58,],[41,41,]),'TK_SPREFIX':([21,58,],[42,42,]),'TK_RPREFIX':([21,58,],[43,43,]),'TK_FILEMODETYPE':([21,58,],[44,44,]),'TK_FILTER':([30,31,39,40,41,42,43,54,57,72,75,],[53,55,-40,62,63,64,65,71,-40,77,80,]),'TK_REGEXPRESSION':([39,61,],[61,61,]),'TK_MODENUMBER':([44,],[66,]),}
+
+_lr_action = {}
+for _k, _v in _lr_action_items.items():
+   for _x,_y in zip(_v[0],_v[1]):
+      if not _x in _lr_action:  _lr_action[_x] = {}
+      _lr_action[_x][_k] = _y
+del _lr_action_items
+
+_lr_goto_items = {'profile':([0,],[1,]),'version':([0,],[2,]),'default':([2,],[4,]),'ruleList':([4,8,],[7,14,]),'rule':([4,8,],[8,8,]),'decision':([5,9,],[10,15,]),'action':([15,],[18,]),'objectList':([18,24,25,26,28,29,50,],[22,46,47,48,51,52,68,]),'requireAny':([18,24,25,26,28,29,50,],[24,24,24,24,24,24,24,]),'requireAll':([18,24,25,26,28,29,50,],[25,25,25,25,25,25,25,]),'reqEnt':([18,24,25,26,28,29,50,],[26,26,26,26,26,26,26,]),'object':([21,58,],[27,73,]),'otherType':([21,31,37,56,58,77,],[31,54,59,72,31,81,]),'regexFilter':([21,58,],[32,32,]),'subpath':([21,58,],[33,33,]),'prefix':([21,58,],[34,34,]),'filemode':([21,58,],[35,35,]),'regexList':([39,61,],[60,76,]),'simpleEntValObject':([58,],[74,]),}
+
+_lr_goto = {}
+for _k, _v in _lr_goto_items.items():
+   for _x, _y in zip(_v[0], _v[1]):
+       if not _x in _lr_goto: _lr_goto[_x] = {}
+       _lr_goto[_x][_k] = _y
+del _lr_goto_items
+_lr_productions = [
+  ("S' -> profile","S'",1,None,None,None),
+  ('profile -> version default ruleList','profile',3,'p_profile','sandscout_compiler.py',127),
+  ('version -> TK_LPAREN TK_VERSION TK_OTHERTYPE TK_RPAREN','version',4,'p_version','sandscout_compiler.py',134),
+  ('default -> TK_LPAREN decision TK_DEFAULT TK_RPAREN','default',4,'p_default','sandscout_compiler.py',139),
+  ('decision -> TK_ALLOW','decision',1,'p_decision','sandscout_compiler.py',146),
+  ('decision -> TK_DENY','decision',1,'p_decision','sandscout_compiler.py',147),
+  ('ruleList -> rule ruleList','ruleList',2,'p_ruleList','sandscout_compiler.py',152),
+  ('ruleList -> <empty>','ruleList',0,'p_ruleList','sandscout_compiler.py',153),
+  ('rule -> TK_LPAREN decision action objectList TK_RPAREN','rule',5,'p_rule','sandscout_compiler.py',162),
+  ('rule -> TK_LPAREN decision action TK_RPAREN','rule',4,'p_rule','sandscout_compiler.py',163),
+  ('action -> TK_OTHERTYPE','action',1,'p_action','sandscout_compiler.py',189),
+  ('objectList -> TK_LPAREN object TK_RPAREN objectList','objectList',4,'p_objectList','sandscout_compiler.py',194),
+  ('objectList -> TK_LPAREN object TK_RPAREN','objectList',3,'p_objectList','sandscout_compiler.py',195),
+  ('objectList -> requireAny objectList','objectList',2,'p_objectList','sandscout_compiler.py',196),
+  ('objectList -> requireAll objectList','objectList',2,'p_objectList','sandscout_compiler.py',197),
+  ('objectList -> requireAny','objectList',1,'p_objectList','sandscout_compiler.py',198),
+  ('objectList -> requireAll','objectList',1,'p_objectList','sandscout_compiler.py',199),
+  ('requireAny -> TK_LPAREN TK_REQANY objectList TK_RPAREN','requireAny',4,'p_requireAny','sandscout_compiler.py',213),
+  ('requireAll -> TK_LPAREN TK_REQALL objectList TK_RPAREN','requireAll',4,'p_requireAll','sandscout_compiler.py',229),
+  ('requireAll -> reqEnt objectList TK_RPAREN','requireAll',3,'p_requireAll','sandscout_compiler.py',230),
+  ('requireAll -> reqEnt TK_RPAREN','requireAll',2,'p_requireAll','sandscout_compiler.py',231),
+  ('reqEnt -> TK_LPAREN TK_REQENT TK_FILTER','reqEnt',3,'p_reqEnt','sandscout_compiler.py',280),
+  ('object -> otherType TK_FILTER','object',2,'p_object','sandscout_compiler.py',287),
+  ('object -> regexFilter','object',1,'p_object','sandscout_compiler.py',288),
+  ('object -> otherType otherType','object',2,'p_object','sandscout_compiler.py',289),
+  ('object -> otherType otherType TK_FILTER','object',3,'p_object','sandscout_compiler.py',290),
+  ('object -> subpath','object',1,'p_object','sandscout_compiler.py',291),
+  ('object -> prefix','object',1,'p_object','sandscout_compiler.py',292),
+  ('object -> filemode','object',1,'p_object','sandscout_compiler.py',293),
+  ('object -> TK_REQNOT TK_LPAREN object TK_RPAREN','object',4,'p_object','sandscout_compiler.py',294),
+  ('object -> TK_REQNOT TK_LPAREN simpleEntValObject TK_RPAREN','object',4,'p_object','sandscout_compiler.py',295),
+  ('object -> TK_VNODETYPE otherType','object',2,'p_object','sandscout_compiler.py',296),
+  ('object -> otherType TK_LPAREN otherType TK_FILTER otherType TK_RPAREN','object',6,'p_object','sandscout_compiler.py',297),
+  ('object -> TK_DEBUGMODE','object',1,'p_object','sandscout_compiler.py',298),
+  ('filemode -> TK_FILEMODETYPE TK_MODENUMBER','filemode',2,'p_filemode','sandscout_compiler.py',326),
+  ('subpath -> TK_SUBPATH TK_FILTER','subpath',2,'p_subpath','sandscout_compiler.py',331),
+  ('prefix -> TK_LPREFIX TK_FILTER','prefix',2,'p_prefix','sandscout_compiler.py',337),
+  ('prefix -> TK_SPREFIX TK_FILTER','prefix',2,'p_prefix','sandscout_compiler.py',338),
+  ('prefix -> TK_RPREFIX TK_FILTER','prefix',2,'p_prefix','sandscout_compiler.py',339),
+  ('simpleEntValObject -> TK_REQENT TK_FILTER','simpleEntValObject',2,'p_simpleEntValObject','sandscout_compiler.py',358),
+  ('otherType -> TK_OTHERTYPE','otherType',1,'p_otherType','sandscout_compiler.py',364),
+  ('regexFilter -> TK_OTHERTYPE regexList','regexFilter',2,'p_regexFilter','sandscout_compiler.py',371),
+  ('regexList -> TK_REGEXPRESSION regexList','regexList',2,'p_regexList','sandscout_compiler.py',381),
+  ('regexList -> TK_REGEXPRESSION','regexList',1,'p_regexList','sandscout_compiler.py',382),
+]
diff --git a/profile_compilation/prologFactsForProfiles/AdSheet.pl b/profile_compilation/prologFactsForProfiles/AdSheet.pl
new file mode 100644
index 0000000..ab5eff7
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/AdSheet.pl
@@ -0,0 +1,603 @@
+
+
+profileDefault(profile("AdSheet"),decision("deny")).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdLib.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdSheetPad.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdSheetPhone.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.reminders.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.adtracking.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iad.adlibd/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iad.LocationPermissions/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPhone/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPad/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iTunesStore/URLCache/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/.+$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPhone/(?|.+)$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPhone[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]AdSheetPad-.+[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]AdSheetPhone-.*[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad-"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone-"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData/Thumbnails")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdLib[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPhone[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]reminders[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iad.adlibd/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iad.LocationPermissions/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPhone/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPad/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iTunesStore/URLCache/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/.+$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPhone/(?|.+)$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPhone[.]plist"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad-"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone-"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(directory),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.geod")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.twitterd.server")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.deleted")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.library")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.messageuiservices")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]iad[.]"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gmmd.cookie")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.eventpump")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd.active")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.chatkit.clientcomposeserver.xpc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ait.client")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.oauthsigner")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("AdSheet"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("AdSheet"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("AdSheet"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("AdSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("AdSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/AppleDiags.pl b/profile_compilation/prologFactsForProfiles/AppleDiags.pl
new file mode 100644
index 0000000..52ef97b
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/AppleDiags.pl
@@ -0,0 +1,273 @@
+
+
+profileDefault(profile("AppleDiags"),decision("deny")).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/null")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/dev/"))])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/zero")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/random")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/urandom")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/aes_0")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/ptmx")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/dtracehelper")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Meda/DCIM/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-sem"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("networkSTAR"),filters([require-not(literal("/private/var/tmp/ubiquity.socket")),require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/syslog")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/printd")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.network.statistics")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.netsrc")])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("AppleDiags"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/Aquarium.pl b/profile_compilation/prologFactsForProfiles/Aquarium.pl
new file mode 100644
index 0000000..0adba16
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/Aquarium.pl
@@ -0,0 +1,288 @@
+
+
+profileDefault(profile("Aquarium"),decision("deny")).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/null")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/dev/"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/zero")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/random")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/urandom")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/aes_0")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/ptmx")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/dtracehelper")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/DCIM/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-sem"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("networkSTAR"),filters([require-not(literal("/private/var/tmp/ubiquity.socket")),require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
+profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/syslog")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/printd")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.network.statistics")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.netsrc")])).
+profileRule(profile("Aquarium"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-fork"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("Aquarium"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("Aquarium"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("Aquarium"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/BTServer.pl b/profile_compilation/prologFactsForProfiles/BTServer.pl
new file mode 100644
index 0000000..c305b48
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/BTServer.pl
@@ -0,0 +1,235 @@
+
+
+profileDefault(profile("BTServer"),decision("deny")).
+profileRule(profile("BTServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.sandbox.pty"),regex("^/dev/ttys[0-9]"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.sandbox.pty"),regex("^/dev/ttys[0-9]+"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.BTServer.airplane.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.BTServer.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.devices.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.ledevices.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.services.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.debug.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/wireless/Library/CallHistory")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/wireless/Library/CallHistory/call_history.db-journal")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Application Support/BTServer")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Application Support/BTServer/pincode_defaults.db")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Application Support/BTServer/pincode_defaults.db-journal")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/wireless/Library/Logs/awd/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/BTServer"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications//"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/private/var/preferences/SystemConfiguration/preferences.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/usr/sbin")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/usr/sbin/BTServer")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([subpath("/System/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/dev/btwake")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/usr/sbin/BTServer")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/usr/sbin")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/wireless/Library")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/wireless")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db-journal")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]BTServer[.]airplane[.]plist"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]BTServer[.]plist"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileBluetooth[.]devices[.]plist"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileBluetooth[.]ledevices[.]plist"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileBluetooth[.]services[.]plist"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer/pincode_defaults.db-journal")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer/pincode_defaults.db")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/CrashReporter/hci")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/BTServer"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/Library/Logs/awd/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications//"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer/pincode_defaults.db")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("BTServer"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDResourceDeviceUserClient")])).
+profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleBasebandUserClient")])).
+profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
+profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOUserEthernetResourceUserClient")])).
+profileRule(profile("BTServer"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tacl.R")])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tacl.W")])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tsco.R")])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tsco.W")])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_read")])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_write")])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^..:..:..:..:..:..-tacl$"/i)])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BlueTool")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ProgressReporting")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.xpc")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WirelessCoexManager")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTServer.map")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTServer.le")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTServer.avrcp")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTAudioHALPlugin.xpc")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("BTServer"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("BTServer"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("BTServer"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("BTServer"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("BTServer"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/BlueTool.pl b/profile_compilation/prologFactsForProfiles/BlueTool.pl
new file mode 100644
index 0000000..8e4bd49
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/BlueTool.pl
@@ -0,0 +1,141 @@
+
+
+profileDefault(profile("BlueTool"),decision("deny")).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/bluetool/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/bt$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/bt.+$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-data"),filters([literal("/dev/btwake")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-data"),filters([literal("/dev/btreset")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bt$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bt.+$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleBasebandUserClient")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("BlueTool"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("BlueTool"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("BlueTool"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("BlueTool"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/CFNetworkAgent.pl b/profile_compilation/prologFactsForProfiles/CFNetworkAgent.pl
new file mode 100644
index 0000000..365f502
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/CFNetworkAgent.pl
@@ -0,0 +1,127 @@
+
+
+profileDefault(profile("CFNetworkAgent"),decision("deny")).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("CFNetworkAgent"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/CVMServer.pl b/profile_compilation/prologFactsForProfiles/CVMServer.pl
new file mode 100644
index 0000000..57ffe5d
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/CVMServer.pl
@@ -0,0 +1,125 @@
+
+
+profileDefault(profile("CVMServer"),decision("deny")).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/OpenGLES.framework/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/bin/codesign_allocate/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]cvmsCompAgent"/i)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("CVMServer"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("CVMServer"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/usr/bin/codesign_allocate/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/System/Library/Frameworks/OpenGLES.framework/")])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("CVMServer"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("CVMServer"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/CommCenter.pl b/profile_compilation/prologFactsForProfiles/CommCenter.pl
new file mode 100644
index 0000000..78729b4
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/CommCenter.pl
@@ -0,0 +1,178 @@
+
+
+profileDefault(profile("CommCenter"),decision("deny")).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bbcdc[.]"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/dlci[.]spi-baseband[.]"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/cu.debug")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.umts")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.spi-baseband")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.debug.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/mux.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.umts")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/mux.spi-baseband")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/AeneasCustomFlags.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/CallHistory/call_history[.]db$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Voicemail/voicemail[.]db$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/LASD/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.cellulardataplan.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.commcenter.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.operator.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iqagent.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.tethering_override.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videoconference_override.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/tmp/csilock")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/tmp/CSI[.]scratch"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.debug")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/bbcdc[.]"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/dlci[.]spi-baseband[.]"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/cu.debug")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/"))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bbcdc[.]"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/dlci[.]spi-baseband[.]"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/cu.debug")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.log")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.umts")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.spi-baseband")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/preferences/AeneasCustomFlags.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/CallHistory/call_history[.]db$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Voicemail/voicemail[.]db$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/LASD/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/tmp/csilock")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/csidata$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/csidata[.]tmp$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist-lock$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist-new$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/preferences/SystemConfiguration/preferences.plist-lock")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/CSI[.]scratch"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/logs/log-bb-live-stats.txt")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/logs/CoreTelephonyTraceScratch")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CrashReporter/Baseband/log-bb-$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CrashReporter/Baseband/log-bb-.+$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CoreTelephonyTrace$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CoreTelephonyTrace/log-bb-$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CoreTelephonyTrace/log-bb-.+$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/CommCenter/spool/loading")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-write-mode"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.commcenter.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-write-owner"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.commcenter.plist")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]CoreTelephony[.]LogChannel[.]$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]CoreTelephony[.]LogChannel[.][-0-9A-F]+$"/i)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.CommCenter.lasd")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),socket-domain(af_system),socket-protocol(1)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("CommCenter"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("CommCenter"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("CommCenter"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("CommCenter"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(1)])).
+profileRule(profile("CommCenter"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/DataActivation.pl b/profile_compilation/prologFactsForProfiles/DataActivation.pl
new file mode 100644
index 0000000..ccfde5f
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/DataActivation.pl
@@ -0,0 +1,324 @@
+
+
+profileDefault(profile("DataActivation"),decision("deny")).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/WebClips/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Ringtones/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]DataActivation[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]DataActivation[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]DataActivation-.+[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation-"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]DataActivation.savedState/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataActivation.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilesafari.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtube.dp.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/DataActivation.app/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Safari/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/MobileSafari.app/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/Safari/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itdbprep.postprocess.lock")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/[.]dat"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp-"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/services")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/hosts")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/group")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/passwd")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/protocols")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Safari/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itdbprep.postprocess.lock")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp-"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]dat"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]DataActivation[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilesafari[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtube[.]dp[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]DataActivation[.]plist"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation-"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]DataActivation.savedState/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]DataActivation.savedState"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("DataActivation"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Applications/MobileSafari.app/MobileSafari")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Applications/DataActivation.app/DataActivation")])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("DataActivation"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("DataActivation"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("DataActivation"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/IMDPersistenceAgent.pl b/profile_compilation/prologFactsForProfiles/IMDPersistenceAgent.pl
new file mode 100644
index 0000000..4cafa2a
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/IMDPersistenceAgent.pl
@@ -0,0 +1,130 @@
+
+
+profileDefault(profile("IMDPersistenceAgent"),decision("deny")).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/SMSMigrator/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imdsmsrecordstore.plist")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ids.plist")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]imdsmsrecordstore[.]plist"/i)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/SMSMigrator/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.searchd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.search.appindexer")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/Lowtide.pl b/profile_compilation/prologFactsForProfiles/Lowtide.pl
new file mode 100644
index 0000000..cf2bec9
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/Lowtide.pl
@@ -0,0 +1,505 @@
+
+
+profileDefault(profile("Lowtide"),decision("deny")).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/random")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/urandom")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/AppleTV/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]lowtide[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]lowtide[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]lowtide-.+[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide-"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]lowtide.savedState/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/.+$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]lowtide"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]lowtide"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb-journal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdLib.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CrashReporter.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.airplay.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appletvservices.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.celestial.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iqagent.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences-sounds.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.datetime.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.soundpref.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.storebookkeeper.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.LaunchServices.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/preferences.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/logs/CrashReporter/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/AppleTV.app.dSYM/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/AppleTV.app/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Front Row/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/AirTunes/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]frontrow[.]"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.Radio/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Radio/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.apsd.launchd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Documents/var/nrd/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/awd/awd-AppleTV.log"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/MediaStream/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Ubiquity/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/AppleTV/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/MobileSoftwareUpdate/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Updates/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb-journal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/Front Row")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/tmp/MediaControlServer.log")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iLifeSlideshow/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone/localtime")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Front Row/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/AirTunes/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.Radio/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Radio/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.apsd.launchd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Documents/var/nrd/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/MediaStream/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/Ubiquity/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/AppleTV/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/MobileSoftwareUpdate/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mmcs[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/awd/awd-AppleTV.log"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]frontrow[.]"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdLib[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]CrashReporter[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]airplay[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]aggregated[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]appletvservices[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]celestial[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]coremedia[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]demo-settings[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iqagent[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]preferences-sounds[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]preferences[.]datetime[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]soundpref[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]storebookkeeper[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]voiceservices[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]lowtide[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide-"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]lowtide.savedState/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide/"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/.+$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]lowtide"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]lowtide"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(directory),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Documents")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Documents/var")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Media")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]lowtide.savedState"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-flags"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-mode"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Updates/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleNANDFTLUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPServiceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPDisplayInterfaceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPDeviceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPControllerUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPAudioInterfaceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVServiceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVVideoInterfaceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVDeviceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVControllerUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVAudioInterfaceUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("PurplePPTServer")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.coremedia.customurlhandler")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.frontrow.tracerouteix")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atvitunescloudd.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wirelessproxd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.keepalive")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tzlink")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.timed.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.softwareupdated")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.obliteration")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videoqueue")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplay")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreaderloader")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreader")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpe")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.workspaceserverconnection")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.checkin")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.adid")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated.addaily")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CrashCopy.OTA")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.airplay.xpc")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]appletv$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]appletv[.]"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]lowtide$"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]lowtide[.]"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("Lowtide"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/Applications/AppleTV.app/")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("system-fsctl"),filters([])).
+profileRule(profile("Lowtide"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("system-info"),filters([info-type("hw.uuid")])).
+profileRule(profile("Lowtide"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("Lowtide"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("Lowtide"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/MailCompositionService.pl b/profile_compilation/prologFactsForProfiles/MailCompositionService.pl
new file mode 100644
index 0000000..868f44a
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/MailCompositionService.pl
@@ -0,0 +1,420 @@
+
+
+profileDefault(profile("MailCompositionService"),decision("deny")).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mail.composition.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/MailCompositionService.app/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.bulletinboard.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailCompositionService[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MailCompositionService[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MailCompositionService-.+[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService-"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MailCompositionService.savedState/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mail[.]composition[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailCompositionService[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService-"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MailCompositionService.savedState/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService/"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MailCompositionService.savedState"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]dataaccess[.]dataaccessd"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.utilitiesconnection")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("MailCompositionService"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/MobileCal.pl b/profile_compilation/prologFactsForProfiles/MobileCal.pl
new file mode 100644
index 0000000..96da17b
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/MobileCal.pl
@@ -0,0 +1,269 @@
+
+
+profileDefault(profile("MobileCal"),decision("deny")).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Ringtones/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobilecal[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobilecal-.+[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal-"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobilecal.savedState/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/MobileCal.app/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/Calendar$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/Calendar/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Calendar$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Calendar/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.calendardiagnostics.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.timezones.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Frameworks/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]calendardiagnostics[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]timezones[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/Calendar$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/Calendar/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Calendar$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Calendar/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal-"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobilecal.savedState/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal/"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobilecal.savedState"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("MobileCal"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("MobileCal"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("MobileCal"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("MobileCal"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("MobileCal"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/MobileMaps.pl b/profile_compilation/prologFactsForProfiles/MobileMaps.pl
new file mode 100644
index 0000000..e6f4af2
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/MobileMaps.pl
@@ -0,0 +1,344 @@
+
+
+profileDefault(profile("MobileMaps"),decision("deny")).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]Maps"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]Maps"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/Maps.app/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Maps/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/GeoJSON"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/Maps/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mms_override.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.weather.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Maps.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.skyhookwireless.wps.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.backedup.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.internal.Voltaire.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Bundles/MapsInternalExtras.bundle/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Ringtones/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Maps[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]Maps[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]Maps-.+[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps-"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]Maps.savedState/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/.+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/hosts")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/services")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/protocols")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/passwd")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/group")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Maps/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Maps/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Maps[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GMM[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]skyhookwireless[.]wps[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistant[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistant[.]backedup[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]internal[.]Voltaire[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/GeoJSON"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]Maps"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]Maps"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/.+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Maps[.]plist"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps-"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]Maps.savedState/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps/"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(directory),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]Maps.savedState"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("MobileMaps"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/MobileSMS.pl b/profile_compilation/prologFactsForProfiles/MobileSMS.pl
new file mode 100644
index 0000000..ed4b6ae
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/MobileSMS.pl
@@ -0,0 +1,284 @@
+
+
+profileDefault(profile("MobileSMS"),decision("deny")).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/Library/Ringtones/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MobileSMS-.+[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS-"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/Library/Dictionaries/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS-"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("MobileSMS"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/MobileSlideShow.pl b/profile_compilation/prologFactsForProfiles/MobileSlideShow.pl
new file mode 100644
index 0000000..d914f68
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/MobileSlideShow.pl
@@ -0,0 +1,441 @@
+
+
+profileDefault(profile("MobileSlideShow"),decision("deny")).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/MobileSlideShow.log")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/Snapshots/com.apple.camera/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/iTunes Library.itlp/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/awd")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/awd/awdComponent0x19.log")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/AppleInternal/Library/Preferences/com.apple.airplay.dashboard.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([debug-mode,regex("^/private/var/mobile/Media/Pano_[0-9]"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mms_override.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.act.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.airplay.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.compass.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.ImageCaptureFramework.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.videouploadplugins.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.notbackedup.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]camera[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobileslideshow-.+[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]camera-.*[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow-"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera-"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobileslideshow.savedState/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]camera.savedState/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/MobileSlideShow.log")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Snapshots/com.apple.camera/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Camera-latest[.]log"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/awd/awdComponent0x19.log")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),debug-mode,regex("^/private/var/mobile/Media/Pano_[0-9]"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]camera[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]videouploadplugins[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]notbackedup[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]camera[.]plist"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow-"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera-"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobileslideshow.savedState/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]camera.savedState/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/awd")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobileslideshow.savedState"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]camera.savedState"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mnt/")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("MobileSlideShow"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/PasteBoard.pl b/profile_compilation/prologFactsForProfiles/PasteBoard.pl
new file mode 100644
index 0000000..7c280d1
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/PasteBoard.pl
@@ -0,0 +1,94 @@
+
+
+profileDefault(profile("PasteBoard"),decision("deny")).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIKit.pboard/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.UIKit.pboard/")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/Frameworks/UIKit.framework/Support/pasteboardd")])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("PasteBoard"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/SecureBackupAlert.pl b/profile_compilation/prologFactsForProfiles/SecureBackupAlert.pl
new file mode 100644
index 0000000..d9e75fb
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/SecureBackupAlert.pl
@@ -0,0 +1,118 @@
+
+
+profileDefault(profile("SecureBackupAlert"),decision("deny")).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("SecureBackupAlert"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/Stocks.pl b/profile_compilation/prologFactsForProfiles/Stocks.pl
new file mode 100644
index 0000000..21fb708
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/Stocks.pl
@@ -0,0 +1,257 @@
+
+
+profileDefault(profile("Stocks"),decision("deny")).
+profileRule(profile("Stocks"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/zero")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/random")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/urandom")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/aes_0")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/ptmx")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/dtracehelper")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Stocks$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Stocks/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.stocks.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]stocks[.]plist"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]stocks[.]plist"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]stocks-.+[.]plist"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks-"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/Library/Dictionaries/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/null")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]stocks[.]plist"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks-"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]stocks[.]plist"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Stocks$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Stocks/"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("Stocks"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("Stocks"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("Stocks"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("Stocks"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("Stocks"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("Stocks"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("Stocks"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("Stocks"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("Stocks"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("Stocks"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/StreamingUnzipService.pl b/profile_compilation/prologFactsForProfiles/StreamingUnzipService.pl
new file mode 100644
index 0000000..f5c438b
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/StreamingUnzipService.pl
@@ -0,0 +1,121 @@
+
+
+profileDefault(profile("StreamingUnzipService"),decision("deny")).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.StreamingUnzipService.plist")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.StreamingUnzipService")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]StreamingUnzipService[.]plist"/i)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.StreamingUnzipService")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("StreamingUnzipService"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/WebSheet.pl b/profile_compilation/prologFactsForProfiles/WebSheet.pl
new file mode 100644
index 0000000..959da88
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/WebSheet.pl
@@ -0,0 +1,416 @@
+
+
+profileDefault(profile("WebSheet"),decision("deny")).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/WebSheet.app/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/Library/Dictionaries/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebSheet.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebSheet[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]WebSheet[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]WebSheet-.+[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet-"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]WebSheet.savedState/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebSheet[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebSheet[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet-"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]WebSheet.savedState/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet/"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]WebSheet.savedState"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networking.captivenetworksupport")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilesafari-settings")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.messageuiservices")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.eventpump")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.certui.relay")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("WebSheet"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Applications/WebSheet.app/WebSheet")])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("WebSheet"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("WebSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("WebSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/accessoryd.pl b/profile_compilation/prologFactsForProfiles/accessoryd.pl
new file mode 100644
index 0000000..6cdbabb
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/accessoryd.pl
@@ -0,0 +1,110 @@
+
+
+profileDefault(profile("accessoryd"),decision("deny")).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iapd.plist")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/"))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iapd[.]plist"/i)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("accessoryd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/usr/sbin/accessoryd")])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("accessoryd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("accessoryd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/afcd.pl b/profile_compilation/prologFactsForProfiles/afcd.pl
new file mode 100644
index 0000000..37ff92c
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/afcd.pl
@@ -0,0 +1,142 @@
+
+
+profileDefault(profile("afcd"),decision("deny")).
+profileRule(profile("afcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.afc.root")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/AFCDEBUG")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec/afcd")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/null")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/zero")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/random")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/urandom")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/aes_0")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/ptmx")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/dtracehelper")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc/"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc$"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/private/var/mobile/Library/Preferences/com.apple.afc.plist")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.afc.root")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/Library/Preferences/SystemConfiguration/com.apple.afc.DeviceInfo.plist")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences/SystemConfiguration")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc/"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc$"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.afc.root")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("afcd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("afcd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("afcd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpchelper")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lockdown.host_watcher")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("afcd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/var/run/lockdown/checkin"/i)])).
+profileRule(profile("afcd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("afcd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("afcd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("afcd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("afcd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/apsd.pl b/profile_compilation/prologFactsForProfiles/apsd.pl
new file mode 100644
index 0000000..8dc4c60
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/apsd.pl
@@ -0,0 +1,128 @@
+
+
+profileDefault(profile("apsd"),decision("deny")).
+profileRule(profile("apsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd/"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/preferences/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/CoreServices/SystemVersion$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/CoreServices/SystemVersion.+$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Keychains")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Keychains/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Managed Preferences/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Managed Preferences/mobile")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Preferences")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ApplePushService/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com.apple.persistentconnection"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd/"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/ApplePushService/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com.apple.persistentconnection"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("apsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("apsd"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("apsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("."/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex(".+"/i)])).
+profileRule(profile("apsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("apsd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/ApplePushService.framework/apsd")])).
+profileRule(profile("apsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("apsd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("apsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("apsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("apsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.GSSCred.pl b/profile_compilation/prologFactsForProfiles/com.apple.GSSCred.pl
new file mode 100644
index 0000000..3fe555b
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/com.apple.GSSCred.pl
@@ -0,0 +1,120 @@
+
+
+profileDefault(profile("com.apple.GSSCred"),decision("deny")).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/db/heim-credential-store.archive")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/heim-credential-store.archive")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.datadetectors.AddToRecentsService.pl b/profile_compilation/prologFactsForProfiles/com.apple.datadetectors.AddToRecentsService.pl
new file mode 100644
index 0000000..f028cb8
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/com.apple.datadetectors.AddToRecentsService.pl
@@ -0,0 +1,137 @@
+
+
+profileDefault(profile("com.apple.datadetectors.AddToRecentsService"),decision("deny")).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.plist")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Applications/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.sandboxd.pl b/profile_compilation/prologFactsForProfiles/com.apple.sandboxd.pl
new file mode 100644
index 0000000..c881831
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/com.apple.sandboxd.pl
@@ -0,0 +1,43 @@
+
+
+profileDefault(profile("com.apple.sandboxd"),decision("deny")).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-readSTAR"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-read-data"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-read-xattr"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CrashReporter/Sandbox-.+[.]plist"/i)])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/cores/"/i),require-not(file-mode("#o0000"))])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/zero")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/null")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.DirectoryService.libinfo_v1")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/sandbox[.]"/i)])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/tmp/[.]webdavUDS[.][^/]+$"/i)])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.snhelper.pl b/profile_compilation/prologFactsForProfiles/com.apple.snhelper.pl
new file mode 100644
index 0000000..d973ed8
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/com.apple.snhelper.pl
@@ -0,0 +1,119 @@
+
+
+profileDefault(profile("com.apple.snhelper"),decision("deny")).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/var/mobile/Library/Caches/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.snhelper")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("com.apple.snhelper"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.tccd.pl b/profile_compilation/prologFactsForProfiles/com.apple.tccd.pl
new file mode 100644
index 0000000..93fca6c
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/com.apple.tccd.pl
@@ -0,0 +1,38 @@
+
+
+profileDefault(profile("com.apple.tccd"),decision("deny")).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class-regex("^com[.]apple[.]tcc[.]"/i)])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-readSTAR"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-read-data"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-read-xattr"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/com.apple.tccd/")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/TCC/")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/tmp/[.]webdavUDS[.][^/]+$"/i)])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("signal"),filters([])).
+profileRule(profile("com.apple.tccd"),decision("allow"),operation("sysctl-read"),filters([])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.tzlinkd.pl b/profile_compilation/prologFactsForProfiles/com.apple.tzlinkd.pl
new file mode 100644
index 0000000..091caf3
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/com.apple.tzlinkd.pl
@@ -0,0 +1,119 @@
+
+
+profileDefault(profile("com.apple.tzlinkd"),decision("deny")).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone/localtime")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone/localtime")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.ubd.pl b/profile_compilation/prologFactsForProfiles/com.apple.ubd.pl
new file mode 100644
index 0000000..bcfc7e4
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/com.apple.ubd.pl
@@ -0,0 +1,208 @@
+
+
+profileDefault(profile("com.apple.ubd"),decision("deny")).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension-class("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ubd.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd/"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]ubd"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]ubd"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Application Support")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Ubiquity/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/processed-Mobile Documents[.]delete"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Mobile Documents"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Collections"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity[.]log"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity.+[.]log"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/awd/awd-ubd[.]log"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-read-data"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]ubd"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]ubd"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd/"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]ubd[.]plist"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mmcs[.]plist"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Ubiquity/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/processed-Mobile Documents[.]delete"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Mobile Documents"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Collections"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity[.]log"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity.+[.]log"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/awd/awd-ubd[.]log"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/awd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/Ubiquity.framework/Versions/A/Support/ubd")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("sysctlSTAR"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("sysctl-write"),filters([])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",30)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",24)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-info"),filters([info-type("hw.uuid")])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.xpcd.pl b/profile_compilation/prologFactsForProfiles/com.apple.xpcd.pl
new file mode 100644
index 0000000..f451eda
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/com.apple.xpcd.pl
@@ -0,0 +1,130 @@
+
+
+profileDefault(profile("com.apple.xpcd"),decision("deny")).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Audio/Plug-Ins/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/db/.debug_xpcd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/hosts")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/services")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/protocols")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/passwd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/group")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Applications/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("signal"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("com.apple.xpcd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/container.pl b/profile_compilation/prologFactsForProfiles/container.pl
new file mode 100644
index 0000000..bdf98b9
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/container.pl
@@ -0,0 +1,1083 @@
+
+
+profileDefault(profile("container"),decision("deny")).
+profileRule(profile("container"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("container"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("container"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdLib.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.LaunchServices.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAddressBook.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncState.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Search.framework.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VoiceMemos.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.adtracking.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.apsd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.atc.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.celestial.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.certui.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.compass.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.dataaccessd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.facetime.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamed.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamekit.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imagent.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imdsmsrecordstore.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imessage.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iqagent.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itdbprep.server.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.madrid.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.managedconfiguration.janitor.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.messagesbadgecontroller.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mms_override.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobile.SyncMigrator.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.alarmengine.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileme.fmf.assistant.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilenotes.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilestoresettings.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobiletimer.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilevpn.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.network.eapclient.tls.TrustExceptions.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.nike.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection-mcc.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.datetime.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.network.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences-sounds.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.softwareupdateservicesd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.twitterd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ubd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voicemail.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/itdbprepserver.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/mediaremote.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.Flytrap")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.BugReporter")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/[-0-9A-Z]+/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/[-0-9A-Z]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.weather.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.appletv.WhatsNew")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.frontrow.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.appletv.WhatsNew")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.restrictionspassword.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mail.composition.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MailAccount-ExtProperties.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncState.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtube.dp.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.books.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.books.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.books.plist"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppStore.plist"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileStore.plist"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist"),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist"),require-entitlement("platform-application",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("platform-application",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist"),require-entitlement("platform-application",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist"),require-entitlement("platform-application",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Ringtones/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/GameKit/Data/[^/]+[.]gcdata$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mail/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/DataAccess/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.AutoWake.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Application Support/Mail/Plugins/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/GameKit/Data")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Applications")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData/Thumbnails")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.appletv.WhatsNew")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("platform-application",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]weather[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]restrictionspassword[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mail[.]composition[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailAccount-ExtProperties[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncState[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtube[.]dp[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/[-0-9A-Z]+/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/DataAccess/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mail/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Calendar/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Notes/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Snapshots/com.apple.internal.Flytrap/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/PhotoData/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.internal.Flytrap/")])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.Flytrap")])])).
+profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.BugReporter")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory)])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory)])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd")])).
+profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDLibUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([require-not(iokit-property-regex("die-id$"/i)),require-not(iokit-property-regex("chip-id$"/i)),require-not(iokit-property-regex("board-id$"/i)),require-not(iokit-property-regex(".+((die|chip)|board)-id$"/i)),require-not(iokit-property-regex("[Cc]alibration"/i)),require-not(iokit-property-regex(".+[Cc]alibration"/i)),require-not(iokit-property-regex("-mac-address"/i)),require-not(iokit-property-regex("mac-address-"/i)),require-not(iokit-property-regex(".+-mac-address"/i)),require-not(iokit-property-regex(".+mac-address-"/i)),require-not(iokit-property-regex("^AppleDiagnostic"/i))])).
+profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("gyro-interrupt-calibration")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property-regex("^BackCamera"/i)])).
+profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("compass-calibration")])).
+profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("fairplay-client",[])])).
+profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-sem"),filters([semaphore-owner(self)])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-sem"),filters([extension("com.apple.sandbox.application-group")])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([extension("com.apple.sandbox.application-group")])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([ipc-posix-name-regex("^/mono[.][0-9]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.geod")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.public")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.notifications.public")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.sandbox.application-group")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.weibod.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("PurplePPTServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPad.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPhone.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaControl.daemon")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileAccessoryUpdater")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileFileIntegrity")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerControllerInternal")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServerExists")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ProgressReporting")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.DirectoryService")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.Jetsam")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SafetyNet")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.StackShot")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accessmanager")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.authmanager")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.oauthsigner")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplay.sender.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ait.client")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appleprofilepolicyd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.keepDaemonAlive")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.messagingServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.notificationServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioConverterServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioFileServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioUnitServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.SystemSounds")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.checkin")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.watchdog")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.workspaceserverconnection")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bypassBasebandAutoBooter.msgport")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.certui.relay")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.clouddbd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.dm-helper")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.mobile-helper")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audioprocessingtap")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpe")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpeprotector")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreader")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.mutablecomposition")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videoqueue")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplay")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplayserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsCompAgent_armv7")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd.active")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.datamigrator.dz")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@0v3")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamecenter")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed.note")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.distributednotification.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.distributednotification.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imavagent.embedded.auth")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.instruments.server.mig")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itdbprep.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lskdd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponder")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponderHelper")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-dev")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-prod")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdservice")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing-nowake")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver.io")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.notification_proxy")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.softwareupdated")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerControllerInternal")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServer")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServerExists")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networking.captivenetworksupport")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.library")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.prdaily")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sandboxd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.scrod")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securekeyvaultd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.xpc")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sociald.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.UIKit.migserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.alerts")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.blockableservices")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.icongeneration")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.remotenotifications")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.watchdogserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.syncdefaultsd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sysmond")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.remotelogdaemon")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.twitterd.server")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.unfreed")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.avconference")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.camera")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vsassetd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wapi.client")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilesafari-settings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebSheet")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilestoredemod"),require-entitlement("com.apple.private.mobilestoredemo.enabledemo",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController-priv"),require-entitlement("com.apple.networking.vpn.configuration",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aps.alertprovider.xpc"),require-entitlement("platform-application",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd.xpc"),require-entitlement("platform-application",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled"),require-entitlement("com.apple.managedconfiguration.profiled-access",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd"),require-entitlement("abs-client",[entitlement-value-regex(".+"/i)])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icfcallserver"),require-entitlement("com.apple.private.icfcallserver",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver"),require-entitlement("com.apple.accessibility.api",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.observerconnection"),require-entitlement("com.apple.bulletinboard.observer",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.settingsconnection"),require-entitlement("com.apple.bulletinboard.settings",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.systemstateconnection"),require-entitlement("com.apple.bulletinboard.systemstate",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.utilitiesconnection"),require-entitlement("com.apple.bulletinboard.utilities",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AOSNotification"),require-entitlement("com.apple.aosnotification.aosnotifyd-access",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.biometrickitd"),require-entitlement("com.apple.private.bmk.allow",[])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("absinthe-client",[entitlement-value-regex(".+"/i)])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CrashCopy.OTA")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.OTATaskingAgent")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.crash_mover")])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.Flytrap")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.BugReporter")])])).
+profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([extension("com.apple.sandbox.application-group")])).
+profileRule(profile("container"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
+profileRule(profile("container"),decision("allow"),operation("network-outbound"),filters([require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:23")))])).
+profileRule(profile("container"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078")))])).
+profileRule(profile("container"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("container"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("container"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("container"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("container"),decision("allow"),operation("process-info-pidinfo"),filters([target(self)])).
+profileRule(profile("container"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("container"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("container"),decision("allow"),operation("signal"),filters([target(others),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("container"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("container"),decision("allow"),operation("system-info"),filters([require-entitlement("fairplay-client",[]),info-type("net.link.addr"),require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])).
+profileRule(profile("container"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("container"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("container"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/containerBetterGraphProcess.pl b/profile_compilation/prologFactsForProfiles/containerBetterGraphProcess.pl
new file mode 100644
index 0000000..9ceb4dc
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/containerBetterGraphProcess.pl
@@ -0,0 +1,1523 @@
+
+
+profileDefault(profile("containerBetterGraphProcess"),decision("deny")).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-ioctl"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-ioctl"),filters([literal("/dev/ptmx")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-ioctl"),filters([literal("/dev/aes_0")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-only"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-only"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/"),extension("com.apple.avasset.read-only"),extension-class("com.apple.mediaserverd.read"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container"),extension-class("com.apple.mediaserverd.read")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/Caches/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/Caches$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.executable")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.executable")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/iTunesArtwork$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.absolute-path.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.home-relative-path.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.executable")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),subpath("/System/Library/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/System/Library/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension("com.apple.sandbox.executable"),extension-class("com.apple.nsurlsessiond.readonly")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-only"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-only"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Library/Mail/"),extension-class("com.apple.mediaserverd.read"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),subpath("/private/var/mobile/Library/ReplayKit/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ReplayKit.RPVideoEditorExtension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/OnDemandResources/AssetPacks/"),extension("com.apple.odr-assets")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),subpath("/private/var/mobile/Library/OnDemandResources/AssetPacks/"),extension("com.apple.odr-assets")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read"),extension-class("com.apple.mediaserverd.read")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container"),extension-class("com.apple.mediaserverd.read")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-map-executable"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.absolute-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.home-relative-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.absolute-path.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.home-relative-path.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.executable")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Managed Preferences/mobile/.GlobalPreferences.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.security.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/System/Library/PairedSyncServices/com.apple.pairedsync.mail.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.AutoWake.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/DataAccess/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Application Support/Mail/Plugins/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]NanoMail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Containers/Bundle/[^/]+/[-0-9A-Z]+/GeoJSON"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]restrictionspassword[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]stocks[.]bridge$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/AppleInternal/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/Applications/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Library/AddressBook/"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/GameKit/Data/[^/]+[.]gcdata$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/[.]GlobalPreferences$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.app-sandbox.read")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/com.apple.xpc.launchd.bootstrap.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Ringtones/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]ToneLibrary$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/GeoServices$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/GeoServices/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.security.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/OnDemandResources/AssetPacks/"),extension("com.apple.odr-assets")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/CloudDocs/session/r/"),vnode-type(regular-file),extension("com.apple.clouddocs.version")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/.DocumentRevisions-V100/PerUID/"),extension("com.apple.revisiond.revision")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/"),extension("com.apple.avasset.read-only"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Metadata/"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite-wal$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite-shm$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite-journal$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/protocols")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/services")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/hosts")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/group")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/passwd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-wal"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-shm"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-journal"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/"),require-entitlement("com.apple.security.exception.carrier-bundle.read",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/CloudDocs/session/r/"),vnode-type(regular-file),extension("com.apple.clouddocs.version")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/.DocumentRevisions-V100/PerUID/"),extension("com.apple.revisiond.revision")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/iTunesArtwork$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/DeviceRegistry")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/GameKit/Data")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/DeviceRegistry")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData/Thumbnails"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.security.exception.files.absolute-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.security.exception.files.home-relative-path.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtube[.]dp[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mail[.]composition[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailAccount-ExtProperties[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncState[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]NanoMail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GMM[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]NanoMailKit[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]skyhookwireless[.]wps[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistant[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]internal[.]Voltaire[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/SMS/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Containers/Bundle/[^/]+/[-0-9A-Z]+/GeoJSON"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]restrictionspassword[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]EmojiPreferences[.]plist"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-journal"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([vnode-type(directory),literal("/private/var/mobile/Library/DeviceRegistry")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/dev/ptmx")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/dev/aes_0")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/dev/dtracehelper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/dev/null")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/dev/zero")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-mode"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-mode"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/Inbox/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/Inbox$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSubmitter2")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceAcceleratorClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([extension("com.apple.security.exception.iokit-user-client-class")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDLibUserClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("compass-calibration")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("gyro-interrupt-calibration")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property-regex("^BackCamera"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-not(iokit-property-regex("-mac-address"/i)),require-not(iokit-property-regex("mac-address-"/i)),require-not(iokit-property-regex(".+-mac-address"/i)),require-not(iokit-property-regex(".+mac-address-"/i))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("com.apple.wifi.manager-access",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("fairplay-client",[require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("com.apple.system.get-hardware-identifiers",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-sem"),filters([semaphore-owner(self)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-sem"),filters([extension("com.apple.sandbox.application-group")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([extension("com.apple.sandbox.application-group")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^apple[.]shm[.]cfprefsd[.]"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([ipc-posix-name-regex("^/mono[.][0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.quicklook.ThumbnailsAgent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesession")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesource")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pegasus")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileProvider")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bird")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bird.token")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.revisiond")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pairedsyncd.syncstate")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nano.nanoregistry.paireddeviceregistry")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.trustd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nesessionmanager")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nehelper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.GSSCred")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cookied")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsurlstorage-cache")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsurlsessiond")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("PurplePPTServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemEventPort")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPad.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPhone.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CoreAuthentication.daemon")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.GameController.gamecontrollerd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaControl.daemon")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileAccessoryUpdater")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileFileIntegrity")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerControllerInternal")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServerExists")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ProgressReporting")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.DirectoryService")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.Jetsam")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SafetyNet")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.StackShot")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accessmanager")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.authmanager")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.oauthsigner")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplay.sender.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ait.client")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appleprofilepolicyd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.extension")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.keepDaemonAlive")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.messagingServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.notificationServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioConverterServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioFileServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioUnitServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.checkin")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.watchdog")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.workspaceserverconnection")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bypassBasebandAutoBooter.msgport")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.certui.relay")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cloudd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.clouddbd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.dm-helper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.mobile-helper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audioprocessingtap")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.compressionsession")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpe")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpeprotector")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.decompressionsession")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreader")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.mutablecomposition")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videoqueue")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplay")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplayserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsCompAgent_armv7")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd.active")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.datamigrator.dz")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@0v3")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamecenter")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed.note")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gizmoappd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.healthd.restriction")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.healthd.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.homed.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.notifications.public")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.public")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.distributednotification.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.distributednotification.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imavagent.embedded.auth")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.instruments.server.mig")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itdbprep.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponder")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponderHelper")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-dev")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-prod")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdservice")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing-nowake")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver.io")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.softwareupdated")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerControllerInternal")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServerExists")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networking.captivenetworksupport")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.notificationcenter.widgetcontrollerconnection")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.in-app-payment")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.assertions")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.library")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.prdaily")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sandboxd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.scrod")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.le.att.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.le.pipe.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.UIKit.migserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.alerts")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.blockableservices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.icongeneration")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.remotenotifications")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.watchdogserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.syncdefaultsd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.callservicesdaemon.voip")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.remotelogdaemon")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.testmanagerd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.twitterd.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.avconference")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.camera")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vsassetd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wapi.client")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wcd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.weibod.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.watchconnectivity.complication")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.spotlight.IndexAgent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.callservicesdaemon.callcapabilities")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.sandbox.application-group")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.geod")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanomaps.xpc.GeoServices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd.nsxpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usernotification.notificationregistrar")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usernotification.notificationscheduler")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.uikit.GestureServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.applicationstateconnection")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.expiration")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.SystemSoundServer-iOS")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.TouchDeliveryPolicyServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.animation-fence-arbiter")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.frontboard.workspace")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.frontboard.systemappservices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanoprefsync")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pluginkit.pkd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ondemandd.client")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([local-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.keepalive")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.lexicon-server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.shortcuts")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.KeyboardManagement")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.KeyboardManagement.hosted")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]uikit[.]viewservice[.].+"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.NPKCompanionAgent.library")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaremoted.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ctkd.token-client")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CoreAuthentication.daemon.libxpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.diagnosticd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.processassertionconnection")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.advertisingidentifiers")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.openurl")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.lsuseractivitymanager.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.icons")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.mapdb")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.open")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.duetknowledged.activity")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfprefsd.daemon")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfprefsd.agent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.cfprefsd.agent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.local-name"),local-name-regex("."/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.local-name"),local-name-regex(".+"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.global-name"),global-name-regex("."/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.global-name"),global-name-regex(".+"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("com.apple.authkit.client",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("com.apple.authkit.client.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("com.apple.authkit.client.internal",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("com.apple.authkit.client",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("com.apple.authkit.client.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("com.apple.authkit.client.internal",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd_privileged"),require-entitlement("com.apple.networkd_privileged",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.replayd"),require-not(privilege-id(0))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.biometrickitd"),require-entitlement("com.apple.private.bmk.allow",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.utilitiesconnection"),require-entitlement("com.apple.bulletinboard.utilities",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.systemstateconnection"),require-entitlement("com.apple.bulletinboard.systemstate",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.settingsconnection"),require-entitlement("com.apple.bulletinboard.settings",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.observerconnection"),require-entitlement("com.apple.bulletinboard.observer",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver"),require-entitlement("com.apple.accessibility.api",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icfcallserver"),require-entitlement("com.apple.private.icfcallserver",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.adid"),require-entitlement("adi-client",[entitlement-value-regex(".*"/i)])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd"),require-entitlement("abs-client",[entitlement-value-regex(".*"/i)])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed"),require-entitlement("absinthe-client",[entitlement-value-regex(".*"/i)])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd"),require-entitlement("absinthe-client",[entitlement-value-regex(".*"/i)])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled"),require-entitlement("com.apple.managedconfiguration.profiled-access",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.unfreed"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lskdd"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aps.alertprovider.xpc"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController-priv"),require-entitlement("com.apple.networking.vpn.configuration",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.siri.vocabularyupdates"),require-entitlement("com.apple.siri.synapse",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.familycircle.agent"),require-entitlement("com.apple.private.familycircle",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icloud.findmydeviced"),require-entitlement("com.apple.aosnotification.aosnotifyd-access",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icloud.findmydeviced"),require-entitlement("com.apple.icloud.findmydeviced.access",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AOSNotification"),require-entitlement("com.apple.aosnotification.aosnotifyd-access",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilestoredemod"),require-entitlement("com.apple.private.mobilestoredemo.enabledemo",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.parsec.subscriptionservice.internal"),require-entitlement("com.apple.private.subscriptionservice.internal",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.parsec.subscriptionservice"),require-entitlement("com.apple.smoot.subscriptionservice",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.suggestionmanager"),require-entitlement("com.apple.private.suggestions",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.spotlight"),require-entitlement("com.apple.private.suggestions",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.mail"),require-entitlement("com.apple.private.suggestions",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.events"),require-entitlement("com.apple.private.suggestions",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.contacts"),require-entitlement("com.apple.private.suggestions",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.spotlight.SearchAgent"),require-entitlement("com.apple.spotlight.search",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cache_delete"),require-entitlement("com.apple.mobile.deleted.AllowFreeSpace",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cache_delete"),require-entitlement("com.apple.private.CacheDelete",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd.people"),require-entitlement("com.apple.coreduetd.allow",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd"),require-entitlement("com.apple.coreduetd.allow",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilesafari-settings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebSheet")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.rtcreportingd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.routined.registration"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pegasus"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesource"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesession"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.harvestd.manager"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backupd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanoprefsync"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.embedded.auth"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletindistributord.server"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.routined.registration"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Maps.SpringBoard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Maps.mapspushd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanomaps.xpc.Maps"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.keybagd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanoprefsync"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.statusbarservices"),require-entitlement("com.apple.springboard.statusbarstyleoverrides",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pegasus"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint.xpc"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesource"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesession"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.dataproviderconnection"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd.people"),require-entitlement("com.apple.coreduetd.people",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),extension("com.apple.sandbox.application-group")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),local-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),local-name("com.apple.iphone.axserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),local-name("com.apple.accessibility.gax.client")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),global-name("com.apple.Music.MPMusicPlayerMigServerExists"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),global-name("com.apple.Music.MPMusicPlayerControllerInternal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([local(ip("*:*"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),literal("/private/var/run/lockdown.sock"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/printd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/syslog")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.network.statistics")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.netsrc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),remote(ip("*:*"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvramSTAR"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvram-delete"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvram-get"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvram-set"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.avfoundation")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreaudio")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coremedia")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.corevideo")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.NanoRegistry")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.demo-settings")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.logging")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([extension("com.apple.security.exception.shared-preference.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([extension("com.apple.security.exception.shared-preference.read-only")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("kCFPreferencesAnyApplication")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AOSNotification.public.notbackedup")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.Accessibility")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AdLib")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.ConfigServer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.GEO")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.GMM")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.InputModePreferences")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.LaunchServices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MapKit.internal")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MobileAddressBook")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.OTASyncState")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.PeoplePicker")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.Preferences")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.UIKit")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.VoiceMemos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.XCTest")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.adtracking")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.aggregated")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.appleaccount")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.apsd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.assistant.backedup")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.assistant.support")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.atc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.camera")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.celestial")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.certui")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.compass")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.dataaccess.dataaccessd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.gamed")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.gamekit")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.imagent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.imdsmsrecordstore")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.imessage")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.iqagent")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itdbprep.server")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.keyboard")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.madrid")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.managedconfiguration.janitor")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.messagesbadgecontroller")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mmcs")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mms_override")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobile.SyncMigrator")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilecal.alarmengine")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilecal")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileme.fmf.assistant")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilenotes")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileslideshow")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilestoresettings")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobiletimer")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilevpn")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.network.eapclient.tls.TrustExceptions")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nike")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.persistentconnection-mcc")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.persistentconnection")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences.datetime")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences.network")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences.sounds")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences-sounds")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.softwareupdateservicesd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.twitterd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.ubd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.videos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.voicemail")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.youtubeframework")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("itdbprepserver")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("mediaremote")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AppSupport")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.locationd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.DataMigration")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.icloud.findmydeviced.postwipe")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.icloud.findmydeviced.public.notbackedup")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.iokit.IOMobileGraphicsFamily")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mediaaccessibility")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain(".GlobalPreferences")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebUI")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreanimation")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mt")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.telephonyutilities.dialassist")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.CoreMotion")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.Sharing")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.EmojiPreferences")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.iapd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nanoprefsyncd")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MobileAsset")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mediaaccessibility.public")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.SpeakSelection")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.VoiceOverTouch")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.voiceservices")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.da")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mediaremote")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.demo-settings"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.DataAccess.BehaviorOptions"),require-entitlement("platform-application",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.system.get-wallpaper",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AppStore"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MobileStore"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.books"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.books"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.books"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.youtube.dp"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.avfoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreaudio"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coremedia"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.corevideo"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.accountsettings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mail.composition"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MailAccount-ExtProperties"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.OTASyncAgent"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.OTASyncState"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nanoprefsyncd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.GMM"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.NanoMailKit"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.skyhookwireless.wps"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.assistant"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.internal.Voltaire"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.weather"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nanoprefsyncd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.avfoundation"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreaudio"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coremedia"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.corevideo"),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.bulletinboard"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.PeoplePicker")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.Preferences")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.EmojiPreferences")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mediaaccessibility.public")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([extension("com.apple.security.exception.shared-preference.read-write")])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.GMM"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.NanoMailKit"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.skyhookwireless.wps"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.assistant"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.internal.Voltaire"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.system.set-alert-tone",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.container2",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.youtube.dp"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.accountsettings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mail.composition"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.MailAccount-ExtProperties"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.OTASyncAgent"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.OTASyncState"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidinfo"),filters([target(self)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidinfo"),filters([require-entitlement("com.apple.security.exception.process-info",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidinfo"),filters([target(others),require-entitlement("com.apple.DiagnosticExtensions.extension",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidfdinfo"),filters([target(self)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidfdinfo"),filters([require-entitlement("com.apple.security.exception.process-info",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-setcontrol"),filters([target(self)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("signal"),filters([target(others),require-entitlement("com.apple.DiagnosticExtensions.extension",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("signal"),filters([target(others),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("sysctl-read"),filters([sysctl-name-regex("^kern[.]proc[.]"/i),require-entitlement("com.apple.security.exception.process-info",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("sysctl-read"),filters([require-not(sysctl-name("kern.proc.pid.1")),require-not(sysctl-name-regex("^kern[.]proc[.]"/i))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("sysctl-read"),filters([require-not(sysctl-name("kern.proc.pid.1")),require-entitlement("com.apple.DiagnosticExtensions.extension",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",32)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",31)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr"),require-entitlement("fairplay-client",[]),require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-privilege"),filters([])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-socket"),filters([socket-domain(39),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
+profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/containerManualPruning.pl b/profile_compilation/prologFactsForProfiles/containerManualPruning.pl
new file mode 100644
index 0000000..e69de29
diff --git a/profile_compilation/prologFactsForProfiles/coresymbolicationd.pl b/profile_compilation/prologFactsForProfiles/coresymbolicationd.pl
new file mode 100644
index 0000000..5666ac9
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/coresymbolicationd.pl
@@ -0,0 +1,112 @@
+
+
+profileDefault(profile("coresymbolicationd"),decision("deny")).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/System/Library/Caches/com.apple.coresymbolicationd/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Caches/com.apple.coresymbolicationd/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("coresymbolicationd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/cplogd.pl b/profile_compilation/prologFactsForProfiles/cplogd.pl
new file mode 100644
index 0000000..aead2f6
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/cplogd.pl
@@ -0,0 +1,112 @@
+
+
+profileDefault(profile("cplogd"),decision("deny")).
+profileRule(profile("cplogd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("cplogd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("cplogd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("cplogd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("cplogd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("cplogd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("cplogd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("cplogd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("cplogd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/dataaccessd.pl b/profile_compilation/prologFactsForProfiles/dataaccessd.pl
new file mode 100644
index 0000000..f2a40f3
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/dataaccessd.pl
@@ -0,0 +1,229 @@
+
+
+profileDefault(profile("dataaccessd"),decision("deny")).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/DataAccess/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Message/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/ManagedConfiguration/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mail/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.dataaccess.dataaccessd/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/DataAccess/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.mobilesafari/ReadingListArchives/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.]binarycookies"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.].+binarycookies"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.autoincrement.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db-journal")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db-shm")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db-wal")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/com.apple.Bookmarks.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Frameworks/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/DataAccess/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/Message/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/ManagedConfiguration/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/DataAccess/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mail/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Notes/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Calendar/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.dataaccess.dataaccessd/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/DataAccess/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.]binarycookies"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.].+binarycookies"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.autoincrement.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db-journal")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db-shm")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db-wal")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/com.apple.Bookmarks.lock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Safari")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.mobilesafari/ReadingListArchives/")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("signal"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("system-sched"),filters([])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("dataaccessd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/debugserver.pl b/profile_compilation/prologFactsForProfiles/debugserver.pl
new file mode 100644
index 0000000..4f2a3e0
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/debugserver.pl
@@ -0,0 +1,132 @@
+
+
+profileDefault(profile("debugserver"),decision("deny")).
+profileRule(profile("debugserver"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Applications")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[.]app/"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[.]app$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app/"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[^/]+[.]app/"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[^/]+[.]app$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/private/var/mobile/"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("debugserver"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("debugserver"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("debugserver"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("mach-priv-task-port"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("localhost:*"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),remote(tcp("localhost:*"))])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([regex("^/private/var/run/lockdown/checkin"/i)])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("debugserver"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications//[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications//[.]app$"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app$"/i)),require-not(regex("^/private/var/mobile/Applications//[^/]+[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications//[^/]+[.]app$"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i))])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-fork"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("signal"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("debugserver"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("debugserver"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("debugserver"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/ftp-proxy-embedded.pl b/profile_compilation/prologFactsForProfiles/ftp-proxy-embedded.pl
new file mode 100644
index 0000000..7197db2
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/ftp-proxy-embedded.pl
@@ -0,0 +1,141 @@
+
+
+profileDefault(profile("ftp-proxy-embedded"),decision("deny")).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pfd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([local(ip("*:*"))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/gamed.pl b/profile_compilation/prologFactsForProfiles/gamed.pl
new file mode 100644
index 0000000..f4677d8
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/gamed.pl
@@ -0,0 +1,240 @@
+
+
+profileDefault(profile("gamed"),decision("deny")).
+profileRule(profile("gamed"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]gamed"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]gamed"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.conference.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamed.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamecenter.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VideoConference.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/gamed")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Applications/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/GameKit/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/GameKit/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.gamed/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/GameKit/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/gamed"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/awd/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]gamed"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]gamed"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/GameKit/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]conference[.]plist"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]gamed[.]plist"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]gamecenter[.]plist"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]logging[.]plist"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/GameKit/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.gamed/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/GameKit/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/gamed"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/awd/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("gamed"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("gamed"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("gamed"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamecenter")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:*"))])).
+profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([remote(ip("*:*"))])).
+profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("gamed"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/usr/libexec/gamed")])).
+profileRule(profile("gamed"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("gamed"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("gamed"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("gamed"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("gamed"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("gamed"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/geod.pl b/profile_compilation/prologFactsForProfiles/geod.pl
new file mode 100644
index 0000000..c7261cb
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/geod.pl
@@ -0,0 +1,169 @@
+
+
+profileDefault(profile("geod"),decision("deny")).
+profileRule(profile("geod"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("geod"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("geod"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("geod"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("geod"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("geod"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Maps/MapTiles")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb-journal")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/MapTiles")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb-journal")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.GeoServices")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.GeoServices/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("geod"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb-journal")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb-journal")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GEO[.]plist"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GMM[.]plist"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.GeoServices/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("geod"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb")])).
+profileRule(profile("geod"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb")])).
+profileRule(profile("geod"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("geod"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("geod"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("geod"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("geod"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("geod"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gmmd.cookie")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([remote(ip("*:*"))])).
+profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("geod"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("geod"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("geod"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("geod"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("geod"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/gputoolsd.pl b/profile_compilation/prologFactsForProfiles/gputoolsd.pl
new file mode 100644
index 0000000..9588113
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/gputoolsd.pl
@@ -0,0 +1,126 @@
+
+
+profileDefault(profile("gputoolsd"),decision("deny")).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/GPUTools/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Caches/com.apple.opengl/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lockdown.host_watcher")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.icongeneration")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.appwatchdog")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("mach-priv-task-port"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/gputoolsdhelper.sock")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/var/run/lockdown/checkin"/i)])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([local(tcp("localhost:*"))])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Developer/usr/libexec/gputoolsd")])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("signal"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("gputoolsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/iapd.pl b/profile_compilation/prologFactsForProfiles/iapd.pl
new file mode 100644
index 0000000..66b518f
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/iapd.pl
@@ -0,0 +1,174 @@
+
+
+profileDefault(profile("iapd"),decision("deny")).
+profileRule(profile("iapd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iapd.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iap2d.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iaptransportd.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/sbin/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iap2d/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/iapd"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/iap2d"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/mp"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/haywire"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistivetouchd[.]enabled[.]launchd"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Radio/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/Panics/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/ea")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iap2d/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/iapd"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/iap2d"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/mp"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/haywire"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistivetouchd[.]enabled[.]launchd"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iapd[.]plist"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iap2d[.]plist"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iaptransportd[.]plist"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]videos[.]plist"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Radio/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/Panics/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("iapd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("iapd"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("iapd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.iap2d.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("iapd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.iaptransportd.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("iapd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.ExternalAccessory.distributednotification.server")])).
+profileRule(profile("iapd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:*"))])).
+profileRule(profile("iapd"),decision("allow"),operation("network-bind"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
+profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([remote(udp("*:*"))])).
+profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("iapd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/IAP.framework/Support/iapd")])).
+profileRule(profile("iapd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/IAP.framework/Support/iap2d")])).
+profileRule(profile("iapd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("iapd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("iapd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("iapd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("iapd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/ios-sandbox-profiles.pl b/profile_compilation/prologFactsForProfiles/ios-sandbox-profiles.pl
new file mode 100644
index 0000000..e69de29
diff --git a/profile_compilation/prologFactsForProfiles/librariand.pl b/profile_compilation/prologFactsForProfiles/librariand.pl
new file mode 100644
index 0000000..e639407
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/librariand.pl
@@ -0,0 +1,130 @@
+
+
+profileDefault(profile("librariand"),decision("deny")).
+profileRule(profile("librariand"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension-class("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.librariand.plist")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Librarian/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand[.]log"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand.+[.]log"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Application Support")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Librarian/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand[.]log"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand.+[.]log"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]appleaccount[.]plist"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]librariand[.]plist"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("librariand"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("librariand"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("librariand"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("librariand"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ubd")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("librariand"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("librariand"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("librariand"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("librariand"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("librariand"),decision("allow"),operation("system-info"),filters([info-type("hw.uuid")])).
+profileRule(profile("librariand"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/lockdownd.pl b/profile_compilation/prologFactsForProfiles/lockdownd.pl
new file mode 100644
index 0000000..15a0f79
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/lockdownd.pl
@@ -0,0 +1,209 @@
+
+
+profileDefault(profile("lockdownd"),decision("deny")).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.purplebuddy.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/Preferences.app/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/lockdownd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Lockdown/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/logs/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/preferences/SystemConfiguration/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/root/Library/Lockdown/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Preferences/com[.]apple[.]mobile[.]lockdownd[.]plist"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/run/lockdown/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Voicemail/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Applications/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(directory)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/logs/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Lockdown/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/com[.]apple[.]ipsec[.]plist"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/com[.]apple[.]eapolclient[.]plist"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Preferences/com[.]apple[.]mobile[.]lockdownd[.]plist"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/lockdown/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-write-mode"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleNANDFTLUserClient")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleEffaceableStorageUserClient")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("iokit-set-properties"),filters([iokit-property("auto-boot")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.afcd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.syslog_relay")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.notification_proxy")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.assertion_agent")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lockdown.host_watcher")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.crash_mover")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.crashreportcopymobile")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atc")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AOSNotification")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.timed.xpc")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installation_proxy")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/lockdown/")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("*:62078"))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockbot")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("lockdownd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("lockdownd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("lockdownd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("lockdownd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/mDNSResponder.pl b/profile_compilation/prologFactsForProfiles/mDNSResponder.pl
new file mode 100644
index 0000000..11df815
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/mDNSResponder.pl
@@ -0,0 +1,120 @@
+
+
+profileDefault(profile("mDNSResponder"),decision("deny")).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Managed Preferences/mobile")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Library/Preferences/")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Managed Preferences")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Managed Preferences/mobile/com.apple.mDNSResponder.plist")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/C/mds/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/C/mds$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/db/mds/[0-9]+/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/db/mds/[0-9]+$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/tmp/mds/[0-9]+/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/tmp/mds/[0-9]+$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/lib/")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/System/")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/private/var/db/dyld/")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/share/")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([subpath("/private/var/tmp/mds/")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([subpath("/private/var/db/mds/")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([literal("/private/var/db/crls/crlcache.db")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([literal("/Library/Keychains/System.keychain")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/usr/sbin")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/private/var/preferences/SystemConfiguration/preferences.plist")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/SystemConfiguration/com.apple.PowerManagement.plist")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),regex("^/Library/Preferences/com[.]apple[.]security[.]"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Security/Trust Settings/Admin.plist")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/com.apple.crypto.plist")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),regex("^/Library/Preferences/[.]GlobalPreferences[.]"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),regex("^/Library/Preferences/ByHost/[.]GlobalPreferences[.]"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/SystemConfiguration/com.apple.nat.plist")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/SystemConfiguration/preferences.plist")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/usr/sbin/mDNSResponder")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/dev/console")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/private/etc/hosts")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/private/etc")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/C/mds/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/C/mds$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/db/mds/[0-9]+/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/db/mds/[0-9]+$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/mds/[0-9]+/"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/mds/[0-9]+$"/i)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/cores/"/i),require-not(file-mode("#o0000"))])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/console")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/null")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/zero")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("mDNSOffloadUserClient")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("wlDNSOffloadUserClient")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("NVEthernetUserClientMDNS")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bsd.dirhelper")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.snhelper")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.blued")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awacs")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webcontentfilter.dns")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SecurityServer")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponderHelper")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ocspd")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications.2")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.DirectoryService.libinfo_v1")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.d2d.ipc")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("mDNSResponder"),decision("allow"),operation("system-socket"),filters([])).
diff --git a/profile_compilation/prologFactsForProfiles/mediaserverd.pl b/profile_compilation/prologFactsForProfiles/mediaserverd.pl
new file mode 100644
index 0000000..81c5494
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/mediaserverd.pl
@@ -0,0 +1,340 @@
+
+
+profileDefault(profile("mediaserverd"),decision("deny")).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd/"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VideoProcessing.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.audio.virtualaudio.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ids.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences-sounds.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.settings.bluetooth.audio-route.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VideoConference.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.celestial.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.conference.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.facetime.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.facetime.bag.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imessage.bag.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/sbin/mediaserverd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/AppleInternal/Library/Preferences/com.apple.airplay.dashboard.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/local/share/firmware/isp/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/local/lib/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/sbin/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/AirPlay[.]log"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/mediaserverd"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Recordings/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoStreamsData/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Sync/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Music/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Downloads/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/DCIM/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/logs/mediaserverd/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/tmp/AirTunesHALPlugin.log")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/wireless/Library/Logs/awd/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/CoreMotion/CoreMotion.log")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.airplay.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/awd/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/AppleInternal/Library/Conference/Environments.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/AirPlay[.]log"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/mediaserverd"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]audio[.]virtualaudio[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]celestial[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]conference[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]coreaudio[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]facetime[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]facetime[.]bag[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]imessage[.]bag[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd/"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Recordings/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/PhotoStreamsData/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/PhotoData/Sync/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Music/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Downloads/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/DCIM/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/logs/mediaserverd/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/tmp/AirTunesHALPlugin.log")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/Library/Logs/awd/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]avfoundation[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]coremedia[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/CoreMotion/CoreMotion.log")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/awd/")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]airplay[.]plist"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/CoreMotion")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOUSBInterfaceUserClientV2")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOStreamAudioUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDResourceDeviceUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDLibUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAudioCodecsUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAudio2TransformerUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAudio2DeviceUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccessoryManagerUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("H3H264VideoEncoderDriverUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXD393UserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXD390UserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXE380UserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXD375UserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH6CamInUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH4CamInUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH3CamInUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH2CamInUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_read")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_write")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^[0-9A-F][0-9A-F]:+[0-9A-F][0-9A-F]-tacl$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^shm_notif[.][^.]+[.][RW]$"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^com[.]apple[.]audio[.]abl[.]"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAudioQueue[.]."/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAURemoteIO[.]."/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleABL[.]."/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAudioQueue[.].+"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAURemoteIO[.].+"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_acl")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securekeyvaultd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lskdd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.xpc")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.xpc")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.distributednotification.server")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.distributednotification.server")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.filesystems.userfsd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.virtualdisplayserver")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.SystemSounds")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WirelessCoexManager")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.NetworkLinkConditioner")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.midiserver.io")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]coremedia[.]"/i)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("*:*"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:*"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([remote(udp("*:*"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/usr/sbin/mediaserverd")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),debug-mode,literal("/usr/bin/trace")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),debug-mode,literal("/usr/bin/syslog")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-fork"),filters([debug-mode])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
+profileRule(profile("mediaserverd"),decision("allow"),operation("system-suspend-resume"),filters([])).
diff --git a/profile_compilation/prologFactsForProfiles/mobile-house-arrest.pl b/profile_compilation/prologFactsForProfiles/mobile-house-arrest.pl
new file mode 100644
index 0000000..563153b
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/mobile-house-arrest.pl
@@ -0,0 +1,206 @@
+
+
+profileDefault(profile("mobile-house-arrest"),decision("deny")).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/zero")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/random")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/urandom")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/aes_0")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/ptmx")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/private/var/mobile/Library/Preferences/com.apple.afc.plist")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec/mobile_house_arrest")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/Library/Preferences/SystemConfiguration/com.apple.afc.DeviceInfo.plist")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/null")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-data"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/GeoJSON$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-data"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/GeoJSON$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Applications")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences/SystemConfiguration")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("mobile-house-arrest"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/mobileassetd.pl b/profile_compilation/prologFactsForProfiles/mobileassetd.pl
new file mode 100644
index 0000000..f3827d6
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/mobileassetd.pl
@@ -0,0 +1,176 @@
+
+
+profileDefault(profile("mobileassetd"),decision("deny")).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),subpath("/private/var/mobile/Library/PreinstalledAssets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),literal("/private/var/mobile/Library/VoiceServices")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),subpath("/private/var/mobile/Library/Assets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/mobileassetd/"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/mobileassetd$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/PreinstalledAssets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/mobileassetd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/PreinstalledAssets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/VoiceServices")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/root/Library/Caches/mobileassetd/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Cookies$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/PreinstalledAssets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/mobileassetd/"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/mobileassetd$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Assets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/VoiceServices")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Caches/mobileassetd/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Cookies$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i),extension("com.apple.app-sandbox.read-write")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("system-sched"),filters([])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("mobileassetd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/nointernet.pl b/profile_compilation/prologFactsForProfiles/nointernet.pl
new file mode 100644
index 0000000..636b99a
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/nointernet.pl
@@ -0,0 +1,12 @@
+
+
+profileDefault(profile("nointernet"),decision("allow")).
+profileRule(profile("nointernet"),decision("allow"),operation("fileSTAR"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
+profileRule(profile("nointernet"),decision("allow"),operation("file-chroot"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
+profileRule(profile("nointernet"),decision("allow"),operation("file-write-create"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
+profileRule(profile("nointernet"),decision("allow"),operation("networkSTAR"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
+profileRule(profile("nointernet"),decision("allow"),operation("networkSTAR"),filters([local(ip("*:*"))])).
+profileRule(profile("nointernet"),decision("allow"),operation("network-inbound"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
+profileRule(profile("nointernet"),decision("allow"),operation("network-bind"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
+profileRule(profile("nointernet"),decision("allow"),operation("network-outbound"),filters([regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)])).
+profileRule(profile("nointernet"),decision("allow"),operation("network-outbound"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
diff --git a/profile_compilation/prologFactsForProfiles/nsnetworkd.pl b/profile_compilation/prologFactsForProfiles/nsnetworkd.pl
new file mode 100644
index 0000000..4a8517d
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/nsnetworkd.pl
@@ -0,0 +1,162 @@
+
+
+profileDefault(profile("nsnetworkd"),decision("deny")).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-journal")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-shm")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-wal")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.nsnetworkd.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Duet.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/com.apple.nsnetworkd/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/Caches/com[.]apple[.]nsnetworkd/"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.nsnetworkd.readonly"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-journal")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-shm")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-wal")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/Caches/com[.]apple[.]nsnetworkd/"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/com[.]apple[.]nsnetworkd/"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]nsnetworkd[.]plist"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/Caches/com[.]apple[.]nsnetworkd$"/i)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/com.apple.nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.xpc")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("nsnetworkd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/passd.pl b/profile_compilation/prologFactsForProfiles/passd.pl
new file mode 100644
index 0000000..70b36be
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/passd.pl
@@ -0,0 +1,203 @@
+
+
+profileDefault(profile("passd"),decision("deny")).
+profileRule(profile("passd"),decision("allow"),operation("distributed-notification-post"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("passd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("passd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd/"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]passd"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]passd"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.passd.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Passes/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd/"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]passd"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]passd"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Passes/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]passd[.]plist"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd/"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("passd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("passd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("passd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("passd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.carditemscontroller")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("passd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("passd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("passd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("passd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("passd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("passd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/pfd.pl b/profile_compilation/prologFactsForProfiles/pfd.pl
new file mode 100644
index 0000000..c172d41
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/pfd.pl
@@ -0,0 +1,121 @@
+
+
+profileDefault(profile("pfd"),decision("deny")).
+profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/pfm")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/pfm")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/pfm")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("pfd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("pfd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("pfd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("pfd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("pfd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("pfd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("pfd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("pfd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/printd.pl b/profile_compilation/prologFactsForProfiles/printd.pl
new file mode 100644
index 0000000..df322ad
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/printd.pl
@@ -0,0 +1,156 @@
+
+
+profileDefault(profile("printd"),decision("deny")).
+profileRule(profile("printd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("printd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("printd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("printd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("printd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("printd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd/"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd$"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.printd.plist")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/com.apple.printd/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/run/printd/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("printd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]printd[.]plist"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd/"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd$"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/com.apple.printd/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/printd/")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("printd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("printd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("printd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("printd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("printd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("*:*"))])).
+profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("printd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("printd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("printd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("printd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("printd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/profile.pl b/profile_compilation/prologFactsForProfiles/profile.pl
new file mode 100644
index 0000000..67b6a5c
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/profile.pl
@@ -0,0 +1,19 @@
+
+
+profileDefault(profile("profile"),decision("deny")).
+profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/readpri/")])).
+profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([literal("/abc/ds")])).
+profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/"),extension("librarian"),require-not(regex("^/reggie1$"/i)),require-not(regex("^/reggie2$"/i))])).
+profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("ally")])).
+profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("guard")])).
+profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("safari")])])).
+profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("webapp")])])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/writepri/")])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([literal("/abc/ds")])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/Sys1$"/i)])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/Sys2$"/i)])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/"),extension("librarian")])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/mobile/"),extension("ally")])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/mobile/"),extension("guard")])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("safari")])])).
+profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("webapp")])])).
diff --git a/profile_compilation/prologFactsForProfiles/ptpd.pl b/profile_compilation/prologFactsForProfiles/ptpd.pl
new file mode 100644
index 0000000..fdaba30
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/ptpd.pl
@@ -0,0 +1,128 @@
+
+
+profileDefault(profile("ptpd"),decision("deny")).
+profileRule(profile("ptpd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ImageCaptureFramework.plist")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/ptpd[.]log$"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/"))])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/ptpd[.]log$"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]ImageCaptureFramework[.]plist"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("ptpd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("ptpd"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("ptpd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("ptpd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("ptpd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("ptpd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("ptpd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("ptpd"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("ptpd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/quicklookd.pl b/profile_compilation/prologFactsForProfiles/quicklookd.pl
new file mode 100644
index 0000000..5004160
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/quicklookd.pl
@@ -0,0 +1,397 @@
+
+
+profileDefault(profile("quicklookd"),decision("deny")).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.quicklook.readonly"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/quicklookd.app/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.quicklook.readonly")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]quicklook[.]quicklookd[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]quicklook[.]quicklookd[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]quicklook[.]quicklookd-.+[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd-"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]quicklook[.]quicklookd.savedState/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]quicklook[.]quicklookd[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd-"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]quicklook[.]quicklookd.savedState/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Media/Safari/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebClips/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]quicklook[.]quicklookd.savedState"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("quicklookd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("quicklookd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("quicklookd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("quicklookd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/racoon.pl b/profile_compilation/prologFactsForProfiles/racoon.pl
new file mode 100644
index 0000000..8f8340b
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/racoon.pl
@@ -0,0 +1,111 @@
+
+
+profileDefault(profile("racoon"),decision("deny")).
+profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/log/racoon.log")])).
+profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Keychains/System.keychain")])).
+profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/mds/system/mdsDirectory.db")])).
+profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/mds/system/mds.lock")])).
+profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/mds/system/mdsObject.db")])).
+profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/var/log/racoon.log")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/etc/master.passwd/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/etc/racoon/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/preferences/SystemConfiguration/com.apple.ipsec.plist")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/racoon/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/sha1_0")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/master.passwd/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/racoon/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.ipsec.plist")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/run/racoon/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Managed Preferences/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/db/mds/messages/se_SecurityMessages")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/root/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Preferences/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/sha1_0")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/sbin/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/lib/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/System/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/share/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/share/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/lib/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/System/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/private/var/db/dyld/")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/tmp")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/var")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/etc/localtime")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/etc")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/var")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/tmp")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/etc")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/racoon.sock")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/racoon.pid")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/cores/"/i),require-not(file-mode("#o0000"))])).
+profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/zero")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/null")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/zero")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/sha1_0")])).
+profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/null")])).
+profileRule(profile("racoon"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("racoon"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
+profileRule(profile("racoon"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("ipc-posixSTAR"),filters([ipc-posix-name("com.apple.securityd")])).
+profileRule(profile("racoon"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("com.apple.AppleDatabaseChanged")])).
+profileRule(profile("racoon"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SecurityServer")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ocspd")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bsd.dirhelper")])).
+profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.DirectoryService.libinfo_v1")])).
+profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:500"))])).
+profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),remote(udp("*:*"))])).
+profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/racoon.sock")])).
+profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:4500"))])).
+profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([subpath("/private/var/tmp/launchd/")])).
+profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
+profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.net.ipsec_control")])).
+profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
+profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("racoon"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("racoon"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("racoon"),decision("allow"),operation("sysctlSTAR"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("sysctl-write"),filters([])).
+profileRule(profile("racoon"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
+profileRule(profile("racoon"),decision("allow"),operation("system-socket"),filters([])).
diff --git a/profile_compilation/prologFactsForProfiles/requireAnyTest.pl b/profile_compilation/prologFactsForProfiles/requireAnyTest.pl
new file mode 100644
index 0000000..2988a6b
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/requireAnyTest.pl
@@ -0,0 +1,13 @@
+
+
+profileDefault(profile("requireAnyTest"),decision("deny")).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/readpri/")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([literal("/abc/ds")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("ally"),extension("vigilance")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("guard"),extension("vigilance")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("flying"),extension("vigilance")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("trample"),extension("vigilance")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("ally"),extension("hexproof")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("guard"),extension("hexproof")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("flying"),extension("hexproof")])).
+profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("trample"),extension("hexproof")])).
diff --git a/profile_compilation/prologFactsForProfiles/softwareupdated.pl b/profile_compilation/prologFactsForProfiles/softwareupdated.pl
new file mode 100644
index 0000000..bba61db
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/softwareupdated.pl
@@ -0,0 +1,127 @@
+
+
+profileDefault(profile("softwareupdated"),decision("deny")).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSoftwareUpdate.plist")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/MobileSoftwareUpdate/restore.log")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/MobileSoftwareUpdate")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/MobileSoftwareUpdate")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/MobileSoftwareUpdate/restore.log")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/OTAUpdate-"/i)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/MobileSoftwareUpdate")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("softwareupdated"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/syncdefaultsd.pl b/profile_compilation/prologFactsForProfiles/syncdefaultsd.pl
new file mode 100644
index 0000000..bf7ade6
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/syncdefaultsd.pl
@@ -0,0 +1,161 @@
+
+
+profileDefault(profile("syncdefaultsd"),decision("deny")).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd/"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SyncedPreferences/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//Library/SyncedPreferences/"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//Library/SyncedPreferences$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences/"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd/"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SyncedPreferences/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications//Library/SyncedPreferences/"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications//Library/SyncedPreferences$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences/"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("iokit-open"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("iokit-set-properties"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("signal"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("syncdefaultsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/transitd.pl b/profile_compilation/prologFactsForProfiles/transitd.pl
new file mode 100644
index 0000000..de0936a
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/transitd.pl
@@ -0,0 +1,109 @@
+
+
+profileDefault(profile("transitd"),decision("deny")).
+profileRule(profile("transitd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("file-read-metadata"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Applications/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/spool/mdt/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Inboxes/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Application Support/Containers/"/i)])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Application Support/Containers$"/i)])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("transitd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("transitd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("transitd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("transitd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("transitd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("transitd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("transitd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("transitd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/userfs_helper.pl b/profile_compilation/prologFactsForProfiles/userfs_helper.pl
new file mode 100644
index 0000000..0a0a1c3
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/userfs_helper.pl
@@ -0,0 +1,131 @@
+
+
+profileDefault(profile("userfs_helper"),decision("deny")).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/disk[0-9]+"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/rdisk[0-9]+"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/disk[0-9]+"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/rdisk[0-9]+"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper/"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper$"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper/"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper$"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/disk[0-9]+"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/rdisk[0-9]+"/i)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("userfs_helper"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/userfsd.pl b/profile_compilation/prologFactsForProfiles/userfsd.pl
new file mode 100644
index 0000000..bfbad28
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/userfsd.pl
@@ -0,0 +1,127 @@
+
+
+profileDefault(profile("userfsd"),decision("deny")).
+profileRule(profile("userfsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd/"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd$"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd/"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd$"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("userfsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("userfsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("userfsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.filesystems.userfs_helper")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("userfsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("userfsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("userfsd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/Filesystems/exfat.fs/Contents/Resources/fsck_exfat")])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-fork"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("userfsd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("userfsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/vibrationmanagerd.pl b/profile_compilation/prologFactsForProfiles/vibrationmanagerd.pl
new file mode 100644
index 0000000..668205a
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/vibrationmanagerd.pl
@@ -0,0 +1,138 @@
+
+
+profileDefault(profile("vibrationmanagerd"),decision("deny")).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Vibrations/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Vibrations/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/Vibrations")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("vibrationmanagerd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/vpn-plugins.pl b/profile_compilation/prologFactsForProfiles/vpn-plugins.pl
new file mode 100644
index 0000000..58c2d5e
--- /dev/null
+++ b/profile_compilation/prologFactsForProfiles/vpn-plugins.pl
@@ -0,0 +1,182 @@
+
+
+profileDefault(profile("vpn-plugins"),decision("deny")).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i),extension("com.apple.vpn-plugin")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+.vpnplugin/"/i),extension("com.apple.vpn-plugin")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+.vpnplugin$"/i),extension("com.apple.vpn-plugin")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/tmp/")),require-not(subpath("/private/var/mobile/Library/")),require-not(subpath("/private/var/mobile/Library/Preferences/")),require-not(subpath("/private/var/logs/")),require-not(subpath("/private/var/ea/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i))])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("iokit-get-properties"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-sem"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("mach-bootstrap"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("mach-lookup"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("mach-register"),filters([global-name("com.f5.f5_sslvpn_plugin")])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("privSTAR"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("priv-adjtime"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-infoSTAR"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-listpids"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-pidinfo"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-setcontrol"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-rusage"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("pseudo-tty"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("signal"),filters([target(self)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("sysctl-read"),filters([])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
+profileRule(profile("vpn-plugins"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/sandscout_compiler.py b/profile_compilation/sandscout_compiler.py
index ca8edf9..7cef26b 100755
--- a/profile_compilation/sandscout_compiler.py
+++ b/profile_compilation/sandscout_compiler.py
@@ -8,28 +8,28 @@
 
 
 ####################################################
-#begin tokenizer / lex
+# begin tokenizer / lex
 ####################################################
 
 reserved = {
-'subpath' : 'TK_SUBPATH',
-'literal-prefix' : 'TK_LPREFIX',
-'subpath-prefix' : 'TK_SPREFIX',
-'regex-prefix' : 'TK_RPREFIX',
-'allow' : 'TK_ALLOW',
-'deny' : 'TK_DENY',
-'version' : 'TK_VERSION',
-'default' : 'TK_DEFAULT',
-'require-all' : 'TK_REQALL',
-'require-any' : 'TK_REQANY',
-'require-not' : 'TK_REQNOT',
-'vnode-type' : 'TK_VNODETYPE',
-'file-mode' : 'TK_FILEMODETYPE',
-'debug-mode' : 'TK_DEBUGMODE',
-'require-entitlement' : 'TK_REQENT'}
+    'subpath': 'TK_SUBPATH',
+    'literal-prefix': 'TK_LPREFIX',
+    'subpath-prefix': 'TK_SPREFIX',
+    'regex-prefix': 'TK_RPREFIX',
+    'allow': 'TK_ALLOW',
+    'deny': 'TK_DENY',
+    'version': 'TK_VERSION',
+    'default': 'TK_DEFAULT',
+    'require-all': 'TK_REQALL',
+    'require-any': 'TK_REQANY',
+    'require-not': 'TK_REQNOT',
+    'vnode-type': 'TK_VNODETYPE',
+    'file-mode': 'TK_FILEMODETYPE',
+    'debug-mode': 'TK_DEBUGMODE',
+    'require-entitlement': 'TK_REQENT'}
 
 # List of token names.   This is always required
-tokens = [ 
+tokens = [
     'TK_LPAREN',
     'TK_RPAREN',
     'TK_FILTER',
@@ -43,57 +43,67 @@
 t_TK_LPAREN = r'\('
 t_TK_RPAREN = r'\)'
 
+
 def t_TK_OTHERTYPE(t):
-  r'[^\"\n#\ \(\)][^\n\ \(\)]*'
-  if t.value in reserved:
-    t.type = reserved.get(t.value,'ID')
-  else:	
-    t.value = str(t.value)
-  return t
- 
+    r'[^\"\n#\ \(\)][^\n\ \(\)]*'
+    if t.value in reserved:
+        t.type = reserved.get(t.value, 'ID')
+    else:
+        t.value = str(t.value)
+    return t
+
+
 def t_TK_FILTER(t):
-  r'"[^"]*"'
-  t.value = str(t.value)
-  return t
+    r'"[^"]*"'
+    t.value = str(t.value)
+    return t
+
 
 def t_TK_REGEXPRESSION(t):
-  r'\#"[^"]*"'
-  t.value = str(t.value)
-  return t
+    r'\#"[^"]*"'
+    t.value = str(t.value)
+    return t
+
 
 def t_TK_BOOL(t):
-  r'\#[tf]'
-  t.value = str(t.value)
-  return t
+    r'\#[tf]'
+    t.value = str(t.value)
+    return t
 
-#attempting to match file-mode number such as #o0004
-def t_TK_MODENUMBER(t):
-  r'\#o[0-9][0-9][0-9][0-9]'
-  t.value = str(t.value)
-  return t
+# attempting to match file-mode number such as #o0004
 
 
+def t_TK_MODENUMBER(t):
+    r'\#o[0-9][0-9][0-9][0-9]'
+    t.value = str(t.value)
+    return t
+
 
-#Taken from ply example in documentation
-#Tracks line numbers
+# Taken from ply example in documentation
+# Tracks line numbers
 def t_newline(t):
-  r'\n+'
-  t.lexer.lineno += len(t.value)
+    r'\n+'
+    t.lexer.lineno += len(t.value)
 
-#Taken from ply example in documentation
-#Ignores spaces and tabs
+
+# Taken from ply example in documentation
+# Ignores spaces and tabs
 t_ignore = ' \t'
 
-#Taken from ply example in documentation
-#Handle error
+# Taken from ply example in documentation
+# Handle error
+
+
 def t_error(t):
-  sys.stderr.write('line '+str(lexer.lineno)+': illegal character ('+str(t.value[0])+')\n')
-  sys.exit()
-  t.lexer.skip(1)
+    sys.stderr.write('line '+str(lexer.lineno) +
+                     ': illegal character ('+str(t.value[0])+')\n')
+    sys.exit()
+    t.lexer.skip(1)
+
 
 lexer = lex.lex()
 
-#get input file
+# get input file
 inputFile = open(sys.argv[1], "r").read()
 
 lexer.input(inputFile)
@@ -107,267 +117,288 @@ def t_error(t):
 """
 
 ####################################################
-#begin parser / yacc 
+# begin parser / yacc
 ####################################################
 
 root = "root not set"
 
+
 def p_profile(p):
-  'profile : version default ruleList'
-  p[0] = p[2] + p[3]
-  global root
-  root = p[0] 
-  
+    'profile : version default ruleList'
+    p[0] = p[2] + p[3]
+    global root
+    root = p[0]
+
 
 def p_version(p):
-  'version : TK_LPAREN TK_VERSION TK_OTHERTYPE TK_RPAREN'
-  p[0] = p[2] + p[3]
+    'version : TK_LPAREN TK_VERSION TK_OTHERTYPE TK_RPAREN'
+    p[0] = p[2] + p[3]
+
 
 def p_default(p):
-  'default 	: TK_LPAREN decision TK_DEFAULT TK_RPAREN'
-  #p[0] = p[2] + p[3]
-  p[0] = ["profileDefault(profile(\""+sys.argv[2]+"\"),decision(\""+p[2]+"\"))."]
+    'default 	: TK_LPAREN decision TK_DEFAULT TK_RPAREN'
+    #p[0] = p[2] + p[3]
+    p[0] = ["profileDefault(profile(\""+sys.argv[2] +
+            "\"),decision(\""+p[2]+"\"))."]
+
 
 def p_decision(p):
-  '''decision 	: TK_ALLOW 
-		| TK_DENY'''
-  p[0] = p[1]
+    '''decision 	: TK_ALLOW 
+                  | TK_DENY'''
+    p[0] = p[1]
+
 
 def p_ruleList(p):
-  '''ruleList 	: rule ruleList
-		| '''
-  if len(p) == 3:
-    #I'm assuming this will be the sum of two lists
-    p[0] = p[1] + p[2]
-  else:
-    p[0] = [] 
+    '''ruleList 	: rule ruleList
+                  | '''
+    if len(p) == 3:
+        # I'm assuming this will be the sum of two lists
+        p[0] = p[1] + p[2]
+    else:
+        p[0] = []
 
-def p_rule(p):
-  '''rule 	: TK_LPAREN decision action objectList TK_RPAREN
-		| TK_LPAREN decision action TK_RPAREN'''
-  #each rule is a list of strings
-  #this code needs to be adjusted to split objectLists apart into separate strings
 
-  #prolog freaks out if I use * outside of a string, so I will replace it.
-  p[3] = p[3].replace('*','STAR')
+def p_rule(p):
+    '''rule 	: TK_LPAREN decision action objectList TK_RPAREN
+                  | TK_LPAREN decision action TK_RPAREN'''
+    # each rule is a list of strings
+    # this code needs to be adjusted to split objectLists apart into separate strings
+
+    # prolog freaks out if I use * outside of a string, so I will replace it.
+    p[3] = p[3].replace('*', 'STAR')
+
+    if len(p) == 6:
+        p[0] = []
+        for o in p[4]:
+            if type(o) is str:
+                #p[0].append(p[2]+"("+p[3] +", [" + o +"]).")
+                p[0].append("profileRule(profile(\""+sys.argv[2]+"\"),decision(\"" +
+                            p[2] + "\"),operation(\"" + p[3] + "\"),filters([" + o + "])).")
+            else:
+                # Some facts were not getting periods at the end. I suspect this is the code that needs to be fixed.
+                for anyElement in o:
+                    #p[0].append(p[2]+"("+p[3] +", [" + anyElement +"]).")
+                    p[0].append("profileRule(profile(\""+sys.argv[2]+"\"),decision(\""+p[2] +
+                                "\"),operation(\"" + p[3] + "\"),filters([" + anyElement + "])).")
+    if len(p) == 5:
+        p[0] = ["profileRule(profile(\""+sys.argv[2]+"\"),decision(\"" +
+                p[2] + "\"),operation(\"" + p[3] + "\"),filters([]))."]
 
-  if len(p) == 6:
-    p[0] = []
-    for o in p[4]:	
-      if type(o) is str:
-	#p[0].append(p[2]+"("+p[3] +", [" + o +"]).")
-	p[0].append("profileRule(profile(\""+sys.argv[2]+"\"),decision(\""+p[2] +"\"),operation(\""+ p[3] +"\"),filters(["+ o +"])).")
-      else:
-	#Some facts were not getting periods at the end. I suspect this is the code that needs to be fixed.
-	for anyElement in o:
-	  #p[0].append(p[2]+"("+p[3] +", [" + anyElement +"]).")
-	  p[0].append("profileRule(profile(\""+sys.argv[2]+"\"),decision(\""+p[2] +"\"),operation(\""+ p[3] +"\"),filters(["+ anyElement +"])).")
-  if len(p) == 5:
-    p[0] = ["profileRule(profile(\""+sys.argv[2]+"\"),decision(\""+p[2] +"\"),operation(\""+ p[3] +"\"),filters([]))."]
 
 def p_action(p):
-  'action 	: TK_OTHERTYPE'
-  p[0] = p[1]
+    'action 	: TK_OTHERTYPE'
+    p[0] = p[1]
+
 
 def p_objectList(p):
-  '''objectList : TK_LPAREN object TK_RPAREN objectList
-		| TK_LPAREN object TK_RPAREN 
-		| requireAny objectList
-		| requireAll objectList
-		| requireAny
-		| requireAll '''
-  if len(p) == 5:
-    #what if p[4] contains more than one element?
-    #I think that this is where my trouble with back to back requireAlls is coming from...
-    p[0] = [p[2]] + p[4]
-  if len(p) == 4:
-    p[0] = [p[2]]
-  if len(p) == 3:
-    p[0] = p[1] + p[2]
-  if len(p) == 2:
-    p[0] = p[1]
+    '''objectList : TK_LPAREN object TK_RPAREN objectList
+                  | TK_LPAREN object TK_RPAREN 
+                  | requireAny objectList
+                  | requireAll objectList
+                  | requireAny
+                  | requireAll '''
+    if len(p) == 5:
+        # what if p[4] contains more than one element?
+        # I think that this is where my trouble with back to back requireAlls is coming from...
+        p[0] = [p[2]] + p[4]
+    if len(p) == 4:
+        p[0] = [p[2]]
+    if len(p) == 3:
+        p[0] = p[1] + p[2]
+    if len(p) == 2:
+        p[0] = p[1]
+
 
 def p_requireAny(p):
-  'requireAny	:  TK_LPAREN TK_REQANY objectList TK_RPAREN'
-  #look for elements that are lists. This would indicate back to back requireAny's which are redundant.
-  #it should be safe to simply combine these into one list 
-  # (A or B or (C or D)) = (A or B or C or D)
-
-  p[0] = []
-  for anyElement in p[3]:
-    if type(anyElement) is str:
-      p[0].append(anyElement)
-    else:
-      for nestedAny in anyElement:
-	p[0].append(nestedAny)
-  p[0] = [p[0]]
+    'requireAny	:  TK_LPAREN TK_REQANY objectList TK_RPAREN'
+    # look for elements that are lists. This would indicate back to back requireAny's which are redundant.
+    # it should be safe to simply combine these into one list
+    # (A or B or (C or D)) = (A or B or C or D)
 
-def p_requireAll(p):
-  '''requireAll	:  TK_LPAREN TK_REQALL objectList TK_RPAREN
-		| reqEnt objectList TK_RPAREN
-		| reqEnt TK_RPAREN'''
-  #TODO: add logic to distinguish between the three possibilities.
-  #Could we use objectList instead of entValList?
-
-  #we will be returning a list of strings at the end of this.
-  returnedList = []
-  p[0] = [""] 
-  if len(p) == 5:
-    returnedList = p[3]
-  if len(p) == 4:
-    returnedList = p[2]
-
-  for allElement in returnedList:
-    if type(allElement) is str:
-      for i in range(len(p[0])):
-	if p[0][i] == "":
-	  p[0][i] = allElement
-	else:
-	  p[0][i] = p[0][i] +","+ allElement
-    else:
-      splitGen = []
-      for anyElement in allElement:
-	iteration = []
-	for i in range(len(p[0])):
-	  #TODO: I think this is where the extra commas are coming from
-	  if p[0][i] == "":
-	    iteration.append(anyElement)
-	  else:
-	    iteration.append(p[0][i] +","+ anyElement)
-	splitGen += iteration
-      p[0] = splitGen
-
-  #If this was in the context of require-entitlement,
-  #then I need to wrap all the entitlement values in the list of the proper functor.
-  if len(p) == 4:
-    for i in range(len(p[0])):
-      p[0][i] = "require-entitlement("+ p[1] +",["+ p[0][i] +"])"
-    #this is a guess for how to solve requireAll( requireEnt ( ...))
-
-  if len(p) == 3:
-    #without an entValList, there are no elements to process
-    p[0] = ["require-entitlement("+ p[1] +",[])"]
-
-  #is it safe to have all requireAlls return a list containing a list of strings?
-  #TODO : this seems to work, so I will keep it for now and verify later...
-  p[0] = [p[0]]
+    p[0] = []
+    for anyElement in p[3]:
+        if type(anyElement) is str:
+            p[0].append(anyElement)
+        else:
+            for nestedAny in anyElement:
+                p[0].append(nestedAny)
+    p[0] = [p[0]]
 
 
-def p_reqEnt(p):
-  'reqEnt	: TK_LPAREN TK_REQENT TK_FILTER'
-  p[0] = p[3]
+def p_requireAll(p):
+    '''requireAll	:  TK_LPAREN TK_REQALL objectList TK_RPAREN
+                  | reqEnt objectList TK_RPAREN
+                  | reqEnt TK_RPAREN'''
+    # TODO: add logic to distinguish between the three possibilities.
+    # Could we use objectList instead of entValList?
+
+    # we will be returning a list of strings at the end of this.
+    returnedList = []
+    p[0] = [""]
+    if len(p) == 5:
+        returnedList = p[3]
+    if len(p) == 4:
+        returnedList = p[2]
+
+    for allElement in returnedList:
+        if type(allElement) is str:
+            for i in range(len(p[0])):
+                if p[0][i] == "":
+                    p[0][i] = allElement
+                else:
+                    p[0][i] = p[0][i] + "," + allElement
+        else:
+            splitGen = []
+            for anyElement in allElement:
+                iteration = []
+                for i in range(len(p[0])):
+                    # TODO: I think this is where the extra commas are coming from
+                    if p[0][i] == "":
+                        iteration.append(anyElement)
+                    else:
+                        iteration.append(p[0][i] + "," + anyElement)
+                splitGen += iteration
+            p[0] = splitGen
+
+    # If this was in the context of require-entitlement,
+    # then I need to wrap all the entitlement values in the list of the proper functor.
+    if len(p) == 4:
+        for i in range(len(p[0])):
+            p[0][i] = "require-entitlement(" + p[1] + ",[" + p[0][i] + "])"
+        # this is a guess for how to solve requireAll( requireEnt ( ...))
+
+    if len(p) == 3:
+        # without an entValList, there are no elements to process
+        p[0] = ["require-entitlement(" + p[1] + ",[])"]
+
+    # is it safe to have all requireAlls return a list containing a list of strings?
+    # TODO : this seems to work, so I will keep it for now and verify later...
+    p[0] = [p[0]]
 
 
+def p_reqEnt(p):
+    'reqEnt	: TK_LPAREN TK_REQENT TK_FILTER'
+    p[0] = p[3]
 
 
-#TODO: the TK_ENTVAL TK_BOOL is a temporary fix and should be removed once we fix our SBPL profiles
-#TODO: I need to be more careful about the way we handle requireEntitlement
+# TODO: the TK_ENTVAL TK_BOOL is a temporary fix and should be removed once we fix our SBPL profiles
+# TODO: I need to be more careful about the way we handle requireEntitlement
 def p_object(p):
-  '''object 	: otherType TK_FILTER
-		| regexFilter
-		| otherType otherType
-		| otherType otherType TK_FILTER
-		| subpath
-		| prefix
-		| filemode
-		| TK_REQNOT TK_LPAREN object TK_RPAREN
-		| TK_REQNOT TK_LPAREN simpleEntValObject TK_RPAREN
-		| TK_VNODETYPE otherType
-		| otherType TK_LPAREN otherType TK_FILTER otherType TK_RPAREN
-		| TK_DEBUGMODE'''
-  if len(p) == 2:
-    p[0] = p[1]
-  if len(p) == 3:
-    p[0] = p[1] +"("+ p[2]+ ")"
-  if len(p) == 4:
-    p[0] = p[1] +"("+ p[2] +"("+ p[3] +"))"
-  if len(p) == 5:
-    if type(p[3]) is str:
-      p[0] = p[1] + p[2] + p[3] + p[4]
-    #requireNot could be wrapped around a bundled regular expression
-    #In this case, it should be treated like a requireAll by concatenating strings
-    else:
-      p[0]=""
-      for anyElement in p[3]:
-	if p[0] == "":
-	  p[0] = p[1] + p[2] + anyElement + p[4] 
-	else:
-	  p[0] += "," + p[1] + p[2] + anyElement + p[4]
-#this is for the system-fsctl operation which has very complex filters
-#TODO: we should make a more generic expression that can match any filter, but not metafilters or implied metafilters.
-  if len(p) == 7:
-    temp = '"'+p[3]+'"'
-    p[3] = temp
-    p[0] = p[1] +"("+  p[3] +","+ p[4] +","+ p[5] +")"
+    '''object 	: otherType TK_FILTER
+                  | regexFilter
+                  | otherType otherType
+                  | otherType otherType TK_FILTER
+                  | subpath
+                  | prefix
+                  | filemode
+                  | TK_REQNOT TK_LPAREN object TK_RPAREN
+                  | TK_REQNOT TK_LPAREN simpleEntValObject TK_RPAREN
+                  | TK_VNODETYPE otherType
+                  | otherType TK_LPAREN otherType TK_FILTER otherType TK_RPAREN
+                  | TK_DEBUGMODE'''
+    if len(p) == 2:
+        p[0] = p[1]
+    if len(p) == 3:
+        p[0] = p[1] + "(" + p[2] + ")"
+    if len(p) == 4:
+        p[0] = p[1] + "(" + p[2] + "(" + p[3] + "))"
+    if len(p) == 5:
+        if type(p[3]) is str:
+            p[0] = p[1] + p[2] + p[3] + p[4]
+        # requireNot could be wrapped around a bundled regular expression
+        # In this case, it should be treated like a requireAll by concatenating strings
+        else:
+            p[0] = ""
+            for anyElement in p[3]:
+                if p[0] == "":
+                    p[0] = p[1] + p[2] + anyElement + p[4]
+                else:
+                    p[0] += "," + p[1] + p[2] + anyElement + p[4]
+# this is for the system-fsctl operation which has very complex filters
+# TODO: we should make a more generic expression that can match any filter, but not metafilters or implied metafilters.
+    if len(p) == 7:
+        temp = '"'+p[3]+'"'
+        p[3] = temp
+        p[0] = p[1] + "(" + p[3] + "," + p[4] + "," + p[5] + ")"
+
 
 def p_filemode(p):
-  'filemode : TK_FILEMODETYPE TK_MODENUMBER'
-  p[0] = p[1] +"(\""+ p[2]+ "\")"
+    'filemode : TK_FILEMODETYPE TK_MODENUMBER'
+    p[0] = p[1] + "(\"" + p[2] + "\")"
+
 
 def p_subpath(p):
-  'subpath	: TK_SUBPATH TK_FILTER'
-  p[2] = p[2][:-1] + '/"'
-  p[0] = p[1] +"("+ p[2]+ ")"
+    'subpath	: TK_SUBPATH TK_FILTER'
+    p[2] = p[2][:-1] + '/"'
+    p[0] = p[1] + "(" + p[2] + ")"
+
 
 def p_prefix(p):
-  '''prefix : TK_LPREFIX TK_FILTER
-	    | TK_SPREFIX TK_FILTER
-	    | TK_RPREFIX TK_FILTER'''
-
-  #if there is a variable in the prefix
-  if "{" in p[2]:
-    #do the ugly regex work here, and just rip out what I need from the filter. This is good enough.
-    pattern = re.compile('"\${([^}]*)}([^"]*)"')
-    matches = pattern.match(p[2])
-    p[0] = p[1] + "(variable(\"" + matches.group(1) + "\"),path(\"" + matches.group(2) + "\"))"
-  #if there is not a variable in the prefix then we just treat the filter like a subpath
-  #this might be too vague, but let's see what happens.
-  else:
-    #I am not appending a / since prefixes might state literals in the filter argument.
-    p[0] = "subpath(" + p[2] + ")"
-
-
-#TODO: this is sort of a hack and I should evaluate it effects carefully
-#the issue is that requireNot can now accept entitlement requirements as parameters
+    '''prefix : TK_LPREFIX TK_FILTER
+              | TK_SPREFIX TK_FILTER
+              | TK_RPREFIX TK_FILTER'''
+
+    # if there is a variable in the prefix
+    if "{" in p[2]:
+        # do the ugly regex work here, and just rip out what I need from the filter. This is good enough.
+        pattern = re.compile('"\${([^}]*)}([^"]*)"')
+        matches = pattern.match(p[2])
+        p[0] = p[1] + "(variable(\"" + matches.group(1) + \
+            "\"),path(\"" + matches.group(2) + "\"))"
+    # if there is not a variable in the prefix then we just treat the filter like a subpath
+    # this might be too vague, but let's see what happens.
+    else:
+        # I am not appending a / since prefixes might state literals in the filter argument.
+        p[0] = "subpath(" + p[2] + ")"
+
+
+# TODO: this is sort of a hack and I should evaluate it effects carefully
+# the issue is that requireNot can now accept entitlement requirements as parameters
 def p_simpleEntValObject(p):
-  'simpleEntValObject	: TK_REQENT TK_FILTER'
-  p[0] = p[1] +"("+ p[2] +")"
-  #p[0] = "todoFixNegatedEnts"
+    'simpleEntValObject	: TK_REQENT TK_FILTER'
+    p[0] = p[1] + "(" + p[2] + ")"
+    #p[0] = "todoFixNegatedEnts"
+
 
 def p_otherType(p):
-  'otherType : TK_OTHERTYPE'
-  #Some filter types are capitalized, but this confuses Prolog, so we make them lowercase
-  p[1] = p[1].lower()
-  p[0] = p[1] 
- 
+    'otherType : TK_OTHERTYPE'
+    # Some filter types are capitalized, but this confuses Prolog, so we make them lowercase
+    p[1] = p[1].lower()
+    p[0] = p[1]
+
+
 def p_regexFilter(p):
-  'regexFilter : TK_OTHERTYPE regexList'
-  p[0] = []
-  for r in p[2]:
-    r = r[1:]
-    r += "/i"
-    r = r.replace("\\.","[.]")
-    p[0].append( p[1] + "(" + r + ")" )
+    'regexFilter : TK_OTHERTYPE regexList'
+    p[0] = []
+    for r in p[2]:
+        r = r[1:]
+        r += "/i"
+        r = r.replace("\\.", "[.]")
+        p[0].append(p[1] + "(" + r + ")")
+
 
 def p_regexList(p):
-  '''regexList 	: TK_REGEXPRESSION regexList
-		| TK_REGEXPRESSION'''
-  if len(p) == 2:
-    p[0] = [p[1]]
-  if len(p) == 3:
-    p[0] = [p[1]] + p[2]
+    '''regexList 	: TK_REGEXPRESSION regexList
+                  | TK_REGEXPRESSION'''
+    if len(p) == 2:
+        p[0] = [p[1]]
+    if len(p) == 3:
+        p[0] = [p[1]] + p[2]
+
 
 def p_error(p):
-  if p == None:
-    sys.stderr.write('line '+str(lexer.lineno)+': syntax error at EOF\n')
-  else:
-    sys.stderr.write('line '+str(lexer.lineno)+': syntax error near '+str(p.value)+'\n')
-  sys.exit()
+    if p == None:
+        sys.stderr.write('line '+str(lexer.lineno)+': syntax error at EOF\n')
+    else:
+        sys.stderr.write('line '+str(lexer.lineno) +
+                         ': syntax error near '+str(p.value)+'\n')
+    sys.exit()
+
 
 parser = yacc.yacc()
 
 parser.parse(inputFile)
 
-print "\n",
+print ("\n"),
 for r in root:
-  print r
+    print (r)
diff --git a/rules.pl b/rules.pl
index 4cdc2b7..f697a36 100644
--- a/rules.pl
+++ b/rules.pl
@@ -103,7 +103,7 @@
     write(Stream,R1), write(Stream,","),
     write(Stream,L1), write(Stream,","),
     write(Stream,W1), write(Stream,","),
-    write(Stream,L2),  nl(Stream),
+    write(Stream,L2), nl(Stream),
     close(Stream),
   fail.
 
diff --git a/smartPly.py b/smartPly.py
index 464a17a..cfc6908 100755
--- a/smartPly.py
+++ b/smartPly.py
@@ -2,10 +2,7 @@
 
 import ply.lex as lex
 import ply.yacc as yacc
-import os
 import sys
-import fileinput
-import re
 
 
 ####################################################
diff --git a/test-cases/ios-sandbox-profiles b/test-cases/ios-sandbox-profiles
new file mode 160000
index 0000000..5bae9c6
--- /dev/null
+++ b/test-cases/ios-sandbox-profiles
@@ -0,0 +1 @@
+Subproject commit 5bae9c66847c86356172fbcda0448539d6792e63

From ae5916231ad0b8188c0ab66c15f8d6cf3910e793 Mon Sep 17 00:00:00 2001
From: AntociAlin <Antoci.Alin97@gmail.com>
Date: Sun, 1 May 2022 11:42:27 -0700
Subject: [PATCH 2/3] Fixed almost all bugs and updated README

---
 profile_compilation/allTheProfileFacts.pl     | 14240 ----------------
 .../prologFactsForProfiles/AdSheet.pl         |   603 -
 .../prologFactsForProfiles/AppleDiags.pl      |   273 -
 .../prologFactsForProfiles/Aquarium.pl        |   288 -
 .../prologFactsForProfiles/BTServer.pl        |   235 -
 .../prologFactsForProfiles/BlueTool.pl        |   141 -
 .../prologFactsForProfiles/CFNetworkAgent.pl  |   127 -
 .../prologFactsForProfiles/CVMServer.pl       |   125 -
 .../prologFactsForProfiles/CommCenter.pl      |   178 -
 .../prologFactsForProfiles/DataActivation.pl  |   324 -
 .../IMDPersistenceAgent.pl                    |   130 -
 .../prologFactsForProfiles/Lowtide.pl         |   505 -
 .../MailCompositionService.pl                 |   420 -
 .../prologFactsForProfiles/MobileCal.pl       |   269 -
 .../prologFactsForProfiles/MobileMaps.pl      |   344 -
 .../prologFactsForProfiles/MobileSMS.pl       |   284 -
 .../prologFactsForProfiles/MobileSlideShow.pl |   441 -
 .../prologFactsForProfiles/PasteBoard.pl      |    94 -
 .../SecureBackupAlert.pl                      |   118 -
 .../prologFactsForProfiles/Stocks.pl          |   257 -
 .../StreamingUnzipService.pl                  |   121 -
 .../prologFactsForProfiles/WebSheet.pl        |   416 -
 .../prologFactsForProfiles/accessoryd.pl      |   110 -
 .../prologFactsForProfiles/afcd.pl            |   142 -
 .../prologFactsForProfiles/apsd.pl            |   128 -
 .../com.apple.GSSCred.pl                      |   120 -
 ...apple.datadetectors.AddToRecentsService.pl |   137 -
 .../com.apple.sandboxd.pl                     |    43 -
 .../com.apple.snhelper.pl                     |   119 -
 .../prologFactsForProfiles/com.apple.tccd.pl  |    38 -
 .../com.apple.tzlinkd.pl                      |   119 -
 .../prologFactsForProfiles/com.apple.ubd.pl   |   208 -
 .../prologFactsForProfiles/com.apple.xpcd.pl  |   130 -
 .../prologFactsForProfiles/container.pl       |  1083 --
 .../containerBetterGraphProcess.pl            |  1523 --
 .../containerManualPruning.pl                 |     0
 .../coresymbolicationd.pl                     |   112 -
 .../prologFactsForProfiles/cplogd.pl          |   112 -
 .../prologFactsForProfiles/dataaccessd.pl     |   229 -
 .../prologFactsForProfiles/debugserver.pl     |   132 -
 .../ftp-proxy-embedded.pl                     |   141 -
 .../prologFactsForProfiles/gamed.pl           |   240 -
 .../prologFactsForProfiles/geod.pl            |   169 -
 .../prologFactsForProfiles/gputoolsd.pl       |   126 -
 .../prologFactsForProfiles/iapd.pl            |   174 -
 .../ios-sandbox-profiles.pl                   |     0
 .../prologFactsForProfiles/librariand.pl      |   130 -
 .../prologFactsForProfiles/lockdownd.pl       |   209 -
 .../prologFactsForProfiles/mDNSResponder.pl   |   120 -
 .../prologFactsForProfiles/mediaserverd.pl    |   340 -
 .../mobile-house-arrest.pl                    |   206 -
 .../prologFactsForProfiles/mobileassetd.pl    |   176 -
 .../prologFactsForProfiles/nointernet.pl      |    12 -
 .../prologFactsForProfiles/nsnetworkd.pl      |   162 -
 .../prologFactsForProfiles/passd.pl           |   203 -
 .../prologFactsForProfiles/pfd.pl             |   121 -
 .../prologFactsForProfiles/printd.pl          |   156 -
 .../prologFactsForProfiles/profile.pl         |    19 -
 .../prologFactsForProfiles/ptpd.pl            |   128 -
 .../prologFactsForProfiles/quicklookd.pl      |   397 -
 .../prologFactsForProfiles/racoon.pl          |   111 -
 .../prologFactsForProfiles/requireAnyTest.pl  |    13 -
 .../prologFactsForProfiles/softwareupdated.pl |   127 -
 .../prologFactsForProfiles/syncdefaultsd.pl   |   161 -
 .../prologFactsForProfiles/transitd.pl        |   109 -
 .../prologFactsForProfiles/userfs_helper.pl   |   131 -
 .../prologFactsForProfiles/userfsd.pl         |   127 -
 .../vibrationmanagerd.pl                      |   138 -
 .../prologFactsForProfiles/vpn-plugins.pl     |   182 -
 69 files changed, 28746 deletions(-)
 delete mode 100644 profile_compilation/allTheProfileFacts.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/AdSheet.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/AppleDiags.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/Aquarium.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/BTServer.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/BlueTool.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/CFNetworkAgent.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/CVMServer.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/CommCenter.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/DataActivation.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/IMDPersistenceAgent.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/Lowtide.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/MailCompositionService.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/MobileCal.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/MobileMaps.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/MobileSMS.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/MobileSlideShow.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/PasteBoard.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/SecureBackupAlert.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/Stocks.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/StreamingUnzipService.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/WebSheet.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/accessoryd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/afcd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/apsd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/com.apple.GSSCred.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/com.apple.datadetectors.AddToRecentsService.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/com.apple.sandboxd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/com.apple.snhelper.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/com.apple.tccd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/com.apple.tzlinkd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/com.apple.ubd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/com.apple.xpcd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/container.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/containerBetterGraphProcess.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/containerManualPruning.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/coresymbolicationd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/cplogd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/dataaccessd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/debugserver.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/ftp-proxy-embedded.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/gamed.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/geod.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/gputoolsd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/iapd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/ios-sandbox-profiles.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/librariand.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/lockdownd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/mDNSResponder.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/mediaserverd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/mobile-house-arrest.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/mobileassetd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/nointernet.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/nsnetworkd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/passd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/pfd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/printd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/profile.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/ptpd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/quicklookd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/racoon.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/requireAnyTest.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/softwareupdated.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/syncdefaultsd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/transitd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/userfs_helper.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/userfsd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/vibrationmanagerd.pl
 delete mode 100644 profile_compilation/prologFactsForProfiles/vpn-plugins.pl

diff --git a/profile_compilation/allTheProfileFacts.pl b/profile_compilation/allTheProfileFacts.pl
deleted file mode 100644
index 60becc6..0000000
--- a/profile_compilation/allTheProfileFacts.pl
+++ /dev/null
@@ -1,14240 +0,0 @@
-
-profileDefault(profile("accessoryd"),decision("deny")).
-profileDefault(profile("AdSheet"),decision("deny")).
-profileDefault(profile("afcd"),decision("deny")).
-profileDefault(profile("AppleDiags"),decision("deny")).
-profileDefault(profile("apsd"),decision("deny")).
-profileDefault(profile("Aquarium"),decision("deny")).
-profileDefault(profile("BlueTool"),decision("deny")).
-profileDefault(profile("BTServer"),decision("deny")).
-profileDefault(profile("CFNetworkAgent"),decision("deny")).
-profileDefault(profile("com.apple.datadetectors.AddToRecentsService"),decision("deny")).
-profileDefault(profile("com.apple.GSSCred"),decision("deny")).
-profileDefault(profile("com.apple.sandboxd"),decision("deny")).
-profileDefault(profile("com.apple.snhelper"),decision("deny")).
-profileDefault(profile("com.apple.tccd"),decision("deny")).
-profileDefault(profile("com.apple.tzlinkd"),decision("deny")).
-profileDefault(profile("com.apple.ubd"),decision("deny")).
-profileDefault(profile("com.apple.xpcd"),decision("deny")).
-profileDefault(profile("CommCenter"),decision("deny")).
-profileDefault(profile("containerBetterGraphProcess"),decision("deny")).
-profileDefault(profile("container"),decision("deny")).
-profileDefault(profile("coresymbolicationd"),decision("deny")).
-profileDefault(profile("cplogd"),decision("deny")).
-profileDefault(profile("CVMServer"),decision("deny")).
-profileDefault(profile("dataaccessd"),decision("deny")).
-profileDefault(profile("DataActivation"),decision("deny")).
-profileDefault(profile("debugserver"),decision("deny")).
-profileDefault(profile("ftp-proxy-embedded"),decision("deny")).
-profileDefault(profile("gamed"),decision("deny")).
-profileDefault(profile("geod"),decision("deny")).
-profileDefault(profile("gputoolsd"),decision("deny")).
-profileDefault(profile("iapd"),decision("deny")).
-profileDefault(profile("IMDPersistenceAgent"),decision("deny")).
-profileDefault(profile("librariand"),decision("deny")).
-profileDefault(profile("lockdownd"),decision("deny")).
-profileDefault(profile("Lowtide"),decision("deny")).
-profileDefault(profile("MailCompositionService"),decision("deny")).
-profileDefault(profile("mDNSResponder"),decision("deny")).
-profileDefault(profile("mediaserverd"),decision("deny")).
-profileDefault(profile("mobileassetd"),decision("deny")).
-profileDefault(profile("MobileCal"),decision("deny")).
-profileDefault(profile("mobile-house-arrest"),decision("deny")).
-profileDefault(profile("MobileMaps"),decision("deny")).
-profileDefault(profile("MobileSlideShow"),decision("deny")).
-profileDefault(profile("MobileSMS"),decision("deny")).
-profileDefault(profile("nointernet"),decision("allow")).
-profileDefault(profile("nsnetworkd"),decision("deny")).
-profileDefault(profile("passd"),decision("deny")).
-profileDefault(profile("PasteBoard"),decision("deny")).
-profileDefault(profile("pfd"),decision("deny")).
-profileDefault(profile("printd"),decision("deny")).
-profileDefault(profile("profile"),decision("deny")).
-profileDefault(profile("ptpd"),decision("deny")).
-profileDefault(profile("quicklookd"),decision("deny")).
-profileDefault(profile("racoon"),decision("deny")).
-profileDefault(profile("requireAnyTest"),decision("deny")).
-profileDefault(profile("SecureBackupAlert"),decision("deny")).
-profileDefault(profile("softwareupdated"),decision("deny")).
-profileDefault(profile("Stocks"),decision("deny")).
-profileDefault(profile("StreamingUnzipService"),decision("deny")).
-profileDefault(profile("syncdefaultsd"),decision("deny")).
-profileDefault(profile("transitd"),decision("deny")).
-profileDefault(profile("userfsd"),decision("deny")).
-profileDefault(profile("userfs_helper"),decision("deny")).
-profileDefault(profile("vibrationmanagerd"),decision("deny")).
-profileDefault(profile("vpn-plugins"),decision("deny")).
-profileDefault(profile("WebSheet"),decision("deny")).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iapd.plist")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/"))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iapd[.]plist"/i)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/usr/sbin/accessoryd")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData/Thumbnails")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdLib.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdSheetPad.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdSheetPhone.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.adtracking.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.reminders.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/.+$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPhone/(?|.+)$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad-"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone-"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPhone[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]AdSheetPad-.+[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]AdSheetPhone-.*[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPad/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPhone/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iad.adlibd/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iad.LocationPermissions/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iTunesStore/URLCache/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdLib[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPhone[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]reminders[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/.+$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPhone/(?|.+)$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad-"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone-"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPhone[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(directory),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPad/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPhone/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iad.adlibd/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iad.LocationPermissions/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iTunesStore/URLCache/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.oauthsigner")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ait.client")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.chatkit.clientcomposeserver.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd.active")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.eventpump")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.geod")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gmmd.cookie")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.deleted")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.messageuiservices")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.library")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.twitterd.server")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]iad[.]"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.afc.root")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences/SystemConfiguration")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.afc.root")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/AFCDEBUG")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/aes_0")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/dtracehelper")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/null")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/ptmx")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/random")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/urandom")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/zero")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/Library/Preferences/SystemConfiguration/com.apple.afc.DeviceInfo.plist")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/private/var/mobile/Library/Preferences/com.apple.afc.plist")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec/afcd")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc$"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc/"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.afc.root")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc$"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc/"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("afcd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lockdown.host_watcher")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpchelper")])).
-profileRule(profile("afcd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("afcd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/var/run/lockdown/checkin"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("afcd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("afcd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/aes_0")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/dtracehelper")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/null")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/ptmx")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/random")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/urandom")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/zero")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/dev/"))])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Meda/DCIM/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-sem"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.netsrc")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.network.statistics")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/printd")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/syslog")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("networkSTAR"),filters([require-not(literal("/private/var/tmp/ubiquity.socket")),require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Keychains")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Managed Preferences/mobile")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Preferences")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd/"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com.apple.persistentconnection"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/CoreServices/SystemVersion.+$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/CoreServices/SystemVersion$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Keychains/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ApplePushService/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Managed Preferences/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/preferences/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd/"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com.apple.persistentconnection"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/ApplePushService/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("apsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("apsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("."/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex(".+"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("apsd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/ApplePushService.framework/apsd")])).
-profileRule(profile("apsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("apsd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("apsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/aes_0")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/dtracehelper")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/null")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/ptmx")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/random")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/urandom")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/zero")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/dev/"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/DCIM/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-sem"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.netsrc")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.network.statistics")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/printd")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/syslog")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("networkSTAR"),filters([require-not(literal("/private/var/tmp/ubiquity.socket")),require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-fork"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-data"),filters([literal("/dev/btreset")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-data"),filters([literal("/dev/btwake")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/bt.+$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/bt$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/bluetool/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bt.+$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bt$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleBasebandUserClient")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("BlueTool"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.sandbox.pty"),regex("^/dev/ttys[0-9]"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.sandbox.pty"),regex("^/dev/ttys[0-9]+"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/dev/btwake")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/private/var/preferences/SystemConfiguration/preferences.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/usr/sbin")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/usr/sbin/BTServer")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([subpath("/System/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/wireless")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/wireless/Library")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/usr/sbin")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/usr/sbin/BTServer")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications//"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Application Support/BTServer")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Application Support/BTServer/pincode_defaults.db")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Application Support/BTServer/pincode_defaults.db-journal")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.BTServer.airplane.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.BTServer.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.debug.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.devices.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.ledevices.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.services.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/wireless/Library/CallHistory")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/wireless/Library/CallHistory/call_history.db-journal")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/BTServer"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/wireless/Library/Logs/awd/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer/pincode_defaults.db")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications//"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer/pincode_defaults.db")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer/pincode_defaults.db-journal")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/CrashReporter/hci")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db-journal")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/BTServer"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]BTServer[.]airplane[.]plist"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]BTServer[.]plist"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileBluetooth[.]devices[.]plist"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileBluetooth[.]ledevices[.]plist"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileBluetooth[.]services[.]plist"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/Library/Logs/awd/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("BTServer"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleBasebandUserClient")])).
-profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDResourceDeviceUserClient")])).
-profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOUserEthernetResourceUserClient")])).
-profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^..:..:..:..:..:..-tacl$"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tacl.R")])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tacl.W")])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tsco.R")])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tsco.W")])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_read")])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_write")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BlueTool")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTAudioHALPlugin.xpc")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTServer.avrcp")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTServer.le")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTServer.map")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.xpc")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ProgressReporting")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WirelessCoexManager")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("BTServer"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("BTServer"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("BTServer"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.plist")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Applications/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/db/heim-credential-store.archive")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/heim-credential-store.archive")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-read-data"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-readSTAR"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-read-xattr"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/null")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/zero")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/cores/"/i),require-not(file-mode("#o0000"))])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CrashReporter/Sandbox-.+[.]plist"/i)])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.DirectoryService.libinfo_v1")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/tmp/[.]webdavUDS[.][^/]+$"/i)])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/sandbox[.]"/i)])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/var/mobile/Library/Caches/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.snhelper")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class-regex("^com[.]apple[.]tcc[.]"/i)])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-read-data"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-readSTAR"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-read-xattr"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/TCC/")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/com.apple.tccd/")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/tmp/[.]webdavUDS[.][^/]+$"/i)])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("signal"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone/localtime")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone/localtime")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension-class("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-read-data"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Application Support")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ubd.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd/"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Collections"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/awd/awd-ubd[.]log"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity.+[.]log"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity[.]log"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]ubd"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]ubd"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Mobile Documents"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/processed-Mobile Documents[.]delete"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Ubiquity/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/awd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd/"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Collections"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/awd/awd-ubd[.]log"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity.+[.]log"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity[.]log"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]ubd"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]ubd"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Mobile Documents"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mmcs[.]plist"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]ubd[.]plist"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/processed-Mobile Documents[.]delete"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Ubiquity/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/Ubiquity.framework/Versions/A/Support/ubd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("sysctlSTAR"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("sysctl-write"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",24)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",30)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-info"),filters([info-type("hw.uuid")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/group")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/hosts")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/passwd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/protocols")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/services")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/db/.debug_xpcd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Audio/Plug-Ins/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Applications/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("signal"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/cu.debug")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.spi-baseband")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.umts")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bbcdc[.]"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/dlci[.]spi-baseband[.]"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/cu.debug")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/mux.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/mux.spi-baseband")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.debug")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.debug.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.umts")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.cellulardataplan.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.commcenter.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iqagent.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.operator.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.tethering_override.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videoconference_override.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/AeneasCustomFlags.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/tmp/csilock")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/bbcdc[.]"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/dlci[.]spi-baseband[.]"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/CallHistory/call_history[.]db$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Voicemail/voicemail[.]db$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/tmp/CSI[.]scratch"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/"))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/LASD/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-write-mode"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.commcenter.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-write-owner"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.commcenter.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/cu.debug")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.spi-baseband")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.umts")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/CommCenter/spool/loading")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/logs/CoreTelephonyTraceScratch")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/logs/log-bb-live-stats.txt")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/preferences/AeneasCustomFlags.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/preferences/SystemConfiguration/preferences.plist-lock")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/tmp/csilock")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bbcdc[.]"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/dlci[.]spi-baseband[.]"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CoreTelephonyTrace$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CoreTelephonyTrace/log-bb-.+$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CoreTelephonyTrace/log-bb-$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CrashReporter/Baseband/log-bb-.+$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CrashReporter/Baseband/log-bb-$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/CallHistory/call_history[.]db$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Voicemail/voicemail[.]db$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/csidata$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/csidata[.]tmp$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist-lock$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist-new$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/CSI[.]scratch"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/LASD/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.CommCenter.lasd")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]CoreTelephony[.]LogChannel[.]$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]CoreTelephony[.]LogChannel[.][-0-9A-F]+$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),socket-domain(af_system),socket-protocol(1)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(1)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-ioctl"),filters([literal("/dev/aes_0")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-ioctl"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-ioctl"),filters([literal("/dev/ptmx")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/iTunesArtwork$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.executable")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.absolute-path.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.home-relative-path.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/OnDemandResources/AssetPacks/"),extension("com.apple.odr-assets")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/System/Library/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.executable")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-only"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-only"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-only"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-only"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),subpath("/private/var/mobile/Library/OnDemandResources/AssetPacks/"),extension("com.apple.odr-assets")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),subpath("/System/Library/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/Caches$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/Caches/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.executable")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),subpath("/private/var/mobile/Library/ReplayKit/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ReplayKit.RPVideoEditorExtension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension("com.apple.sandbox.executable"),extension-class("com.apple.nsurlsessiond.readonly")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read"),extension-class("com.apple.mediaserverd.read")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Library/Mail/"),extension-class("com.apple.mediaserverd.read"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container"),extension-class("com.apple.mediaserverd.read")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/"),extension("com.apple.avasset.read-only"),extension-class("com.apple.mediaserverd.read"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-map-executable"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/DeviceRegistry")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/GameKit/Data")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData/Thumbnails"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/DeviceRegistry")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/iTunesArtwork$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.executable")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.absolute-path.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.absolute-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.home-relative-path.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.home-relative-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Managed Preferences/mobile/.GlobalPreferences.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.security.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.AutoWake.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/System/Library/PairedSyncServices/com.apple.pairedsync.mail.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Containers/Bundle/[^/]+/[-0-9A-Z]+/GeoJSON"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]NanoMail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]stocks[.]bridge$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]restrictionspassword[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.app-sandbox.read")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/com.apple.xpc.launchd.bootstrap.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.security.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/GeoServices$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/GeoServices/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]ToneLibrary$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/[.]GlobalPreferences$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/GameKit/Data/[^/]+[.]gcdata$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite-journal$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite-shm$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite-wal$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/group")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/hosts")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/passwd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/protocols")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/services")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-journal"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-shm"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-wal"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Ringtones/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/.DocumentRevisions-V100/PerUID/"),extension("com.apple.revisiond.revision")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/CloudDocs/session/r/"),vnode-type(regular-file),extension("com.apple.clouddocs.version")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/OnDemandResources/AssetPacks/"),extension("com.apple.odr-assets")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/"),extension("com.apple.avasset.read-only"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Metadata/"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/AppleInternal/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/Applications/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Library/AddressBook/"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Application Support/Mail/Plugins/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/.DocumentRevisions-V100/PerUID/"),extension("com.apple.revisiond.revision")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/CloudDocs/session/r/"),vnode-type(regular-file),extension("com.apple.clouddocs.version")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/DataAccess/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/"),require-entitlement("com.apple.security.exception.carrier-bundle.read",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([vnode-type(directory),literal("/private/var/mobile/Library/DeviceRegistry")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/dev/aes_0")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/dev/ptmx")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/dev/dtracehelper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/dev/null")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/dev/zero")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-mode"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-mode"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.security.exception.files.absolute-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.security.exception.files.home-relative-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Containers/Bundle/[^/]+/[-0-9A-Z]+/GeoJSON"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]NanoMail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistant[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GMM[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]internal[.]Voltaire[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailAccount-ExtProperties[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mail[.]composition[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]NanoMailKit[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncState[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]restrictionspassword[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtube[.]dp[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]skyhookwireless[.]wps[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]EmojiPreferences[.]plist"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-journal"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/SMS/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/Inbox$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/Inbox/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("compass-calibration")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("gyro-interrupt-calibration")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property-regex("^BackCamera"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("com.apple.system.get-hardware-identifiers",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("com.apple.wifi.manager-access",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("fairplay-client",[require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-not(iokit-property-regex("-mac-address"/i)),require-not(iokit-property-regex("mac-address-"/i)),require-not(iokit-property-regex(".+-mac-address"/i)),require-not(iokit-property-regex(".+mac-address-"/i))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([extension("com.apple.security.exception.iokit-user-client-class")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSubmitter2")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDLibUserClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceAcceleratorClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-sem"),filters([extension("com.apple.sandbox.application-group")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-sem"),filters([semaphore-owner(self)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^apple[.]shm[.]cfprefsd[.]"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([extension("com.apple.sandbox.application-group")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([ipc-posix-name-regex("^/mono[.][0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.sandbox.application-group")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.global-name"),global-name-regex("."/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.global-name"),global-name-regex(".+"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.local-name"),local-name-regex("."/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.local-name"),local-name-regex(".+"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd"),require-entitlement("abs-client",[entitlement-value-regex(".*"/i)])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd"),require-entitlement("absinthe-client",[entitlement-value-regex(".*"/i)])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed"),require-entitlement("absinthe-client",[entitlement-value-regex(".*"/i)])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accessmanager")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.authmanager")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.oauthsigner")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.adid"),require-entitlement("adi-client",[entitlement-value-regex(".*"/i)])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPad.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPhone.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplay.sender.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ait.client")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("com.apple.authkit.client",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("com.apple.authkit.client.internal",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("com.apple.authkit.client.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("com.apple.authkit.client",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("com.apple.authkit.client.internal",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("com.apple.authkit.client.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AOSNotification"),require-entitlement("com.apple.aosnotification.aosnotifyd-access",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appleprofilepolicyd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aps.alertprovider.xpc"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.applicationstateconnection")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.expiration")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.extension")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.processassertionconnection")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.keepDaemonAlive")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.messagingServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.notificationServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioConverterServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioFileServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioUnitServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.SystemSoundServer-iOS")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.animation-fence-arbiter")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.checkin")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.TouchDeliveryPolicyServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.watchdog")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.workspaceserverconnection")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backupd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.biometrickitd"),require-entitlement("com.apple.private.bmk.allow",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bird")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bird.token")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.dataproviderconnection"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.observerconnection"),require-entitlement("com.apple.bulletinboard.observer",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.settingsconnection"),require-entitlement("com.apple.bulletinboard.settings",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.systemstateconnection"),require-entitlement("com.apple.bulletinboard.systemstate",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.utilitiesconnection"),require-entitlement("com.apple.bulletinboard.utilities",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletindistributord.server"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bypassBasebandAutoBooter.msgport")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cache_delete"),require-entitlement("com.apple.mobile.deleted.AllowFreeSpace",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cache_delete"),require-entitlement("com.apple.private.CacheDelete",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.certui.relay")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfprefsd.agent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfprefsd.daemon")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cloudd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.clouddbd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.dm-helper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.mobile-helper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cookied")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CoreAuthentication.daemon")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CoreAuthentication.daemon.libxpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd.people"),require-entitlement("com.apple.coreduetd.allow",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd.people"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd"),require-entitlement("com.apple.coreduetd.allow",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audioprocessingtap")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesession")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesession"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesession"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesource")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesource"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesource"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.compressionsession")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpe")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpeprotector")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.decompressionsession")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint.xpc"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreader")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.mutablecomposition")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videoqueue")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplay")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplayserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.lsuseractivitymanager.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ctkd.token-client")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsCompAgent_armv7")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd.active")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.datamigrator.dz")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.diagnosticd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@0v3")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.duetknowledged.activity")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.familycircle.agent"),require-entitlement("com.apple.private.familycircle",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileProvider")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.frontboard.systemappservices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.frontboard.workspace")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamecenter")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.GameController.gamecontrollerd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed.note")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.geod")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gizmoappd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.GSSCred")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.harvestd.manager"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.healthd.restriction")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.healthd.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.homed.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.distributednotification.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.distributednotification.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icfcallserver"),require-entitlement("com.apple.private.icfcallserver",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icloud.findmydeviced"),require-entitlement("com.apple.aosnotification.aosnotifyd-access",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icloud.findmydeviced"),require-entitlement("com.apple.icloud.findmydeviced.access",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.embedded.auth"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imavagent.embedded.auth")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.instruments.server.mig")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itdbprep.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.notifications.public")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.public")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.advertisingidentifiers")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.icons")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.mapdb")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.open")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.openurl")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lskdd"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-dev")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-prod")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdservice")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled"),require-entitlement("com.apple.managedconfiguration.profiled-access",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Maps.mapspushd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Maps.SpringBoard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponder")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponderHelper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaControl.daemon")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaremoted.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing-nowake")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver.io")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileAccessoryUpdater")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileFileIntegrity")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerControllerInternal")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServerExists")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.keybagd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilesafari-settings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebSheet")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.softwareupdated")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilestoredemod"),require-entitlement("com.apple.private.mobilestoredemo.enabledemo",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerControllerInternal")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServerExists")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanomaps.xpc.GeoServices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanomaps.xpc.Maps"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nano.nanoregistry.paireddeviceregistry")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanoprefsync")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanoprefsync"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanoprefsync"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nehelper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nesessionmanager")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd_privileged"),require-entitlement("com.apple.networkd_privileged",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networking.captivenetworksupport")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.notificationcenter.widgetcontrollerconnection")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.NPKCompanionAgent.library")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsurlsessiond")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsurlstorage-cache")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ondemandd.client")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pairedsyncd.syncstate")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.parsec.subscriptionservice.internal"),require-entitlement("com.apple.private.subscriptionservice.internal",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.parsec.subscriptionservice"),require-entitlement("com.apple.smoot.subscriptionservice",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.assertions")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.in-app-payment")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.library")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pegasus")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pegasus"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pegasus"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pluginkit.pkd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.prdaily")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ProgressReporting")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.quicklook.ThumbnailsAgent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.replayd"),require-not(privilege-id(0))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.DirectoryService")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.Jetsam")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SafetyNet")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.StackShot")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.revisiond")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.routined.registration"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.routined.registration"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.rtcreportingd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sandboxd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.scrod")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.le.att.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.le.pipe.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd.nsxpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.siri.vocabularyupdates"),require-entitlement("com.apple.siri.synapse",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.spotlight.IndexAgent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.spotlight.SearchAgent"),require-entitlement("com.apple.spotlight.search",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.alerts")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.blockableservices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.icongeneration")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.remotenotifications")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.statusbarservices"),require-entitlement("com.apple.springboard.statusbarstyleoverrides",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.UIKit.migserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.watchdogserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.contacts"),require-entitlement("com.apple.private.suggestions",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.events"),require-entitlement("com.apple.private.suggestions",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.mail"),require-entitlement("com.apple.private.suggestions",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.spotlight"),require-entitlement("com.apple.private.suggestions",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.suggestionmanager"),require-entitlement("com.apple.private.suggestions",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.syncdefaultsd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController-priv"),require-entitlement("com.apple.networking.vpn.configuration",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.callservicesdaemon.callcapabilities")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.callservicesdaemon.voip")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.remotelogdaemon")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.testmanagerd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.lexicon-server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.shortcuts")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.trustd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.twitterd.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.uikit.GestureServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.KeyboardManagement")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.KeyboardManagement.hosted")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.unfreed"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usernotification.notificationregistrar")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usernotification.notificationscheduler")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.avconference")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.camera")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.keepalive")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vsassetd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wapi.client")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.watchconnectivity.complication")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wcd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.weibod.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("PurplePPTServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemEventPort")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]uikit[.]viewservice[.].+"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.cfprefsd.agent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver"),require-entitlement("com.apple.accessibility.api",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([local-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),extension("com.apple.sandbox.application-group")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),global-name("com.apple.Music.MPMusicPlayerControllerInternal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),global-name("com.apple.Music.MPMusicPlayerMigServerExists"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),local-name("com.apple.accessibility.gax.client")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),local-name("com.apple.iphone.axserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),local-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([local(ip("*:*"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),literal("/private/var/run/lockdown.sock"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.netsrc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.network.statistics")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/printd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/syslog")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),remote(ip("*:*"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvram-delete"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvram-get"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvram-set"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvramSTAR"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidfdinfo"),filters([require-entitlement("com.apple.security.exception.process-info",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidfdinfo"),filters([target(self)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidinfo"),filters([require-entitlement("com.apple.security.exception.process-info",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidinfo"),filters([target(others),require-entitlement("com.apple.DiagnosticExtensions.extension",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidinfo"),filters([target(self)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-setcontrol"),filters([target(self)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("signal"),filters([target(others),require-entitlement("com.apple.DiagnosticExtensions.extension",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("signal"),filters([target(others),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("sysctl-read"),filters([require-not(sysctl-name("kern.proc.pid.1")),require-entitlement("com.apple.DiagnosticExtensions.extension",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("sysctl-read"),filters([require-not(sysctl-name("kern.proc.pid.1")),require-not(sysctl-name-regex("^kern[.]proc[.]"/i))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("sysctl-read"),filters([sysctl-name-regex("^kern[.]proc[.]"/i),require-entitlement("com.apple.security.exception.process-info",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",31)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",32)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr"),require-entitlement("fairplay-client",[]),require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-privilege"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-socket"),filters([socket-domain(39),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([extension("com.apple.security.exception.shared-preference.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([extension("com.apple.security.exception.shared-preference.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.Accessibility")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.accountsettings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AdLib")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.adtracking")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.aggregated")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AOSNotification.public.notbackedup")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.appleaccount")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AppStore"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AppSupport")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.apsd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.assistant.backedup")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.assistant"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.assistant.support")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.atc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.avfoundation")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.avfoundation"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.avfoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.books"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.books"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.books"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.bulletinboard"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.camera")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.celestial")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.certui")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.compass")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.ConfigServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreanimation")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreaudio")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreaudio"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreaudio"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coremedia")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coremedia"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coremedia"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.CoreMotion")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.corevideo")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.corevideo"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.corevideo"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.da")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.DataAccess.BehaviorOptions"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.dataaccess.dataaccessd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.DataMigration")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.demo-settings")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.demo-settings"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.EmojiPreferences")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.gamed")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.gamekit")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.GEO")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.GMM")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.GMM"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.iapd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.icloud.findmydeviced.postwipe")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.icloud.findmydeviced.public.notbackedup")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.imagent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.imdsmsrecordstore")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.imessage")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.InputModePreferences")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.internal.Voltaire"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.iokit.IOMobileGraphicsFamily")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.iqagent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itdbprep.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.keyboard")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.LaunchServices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.locationd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.logging")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.madrid")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MailAccount-ExtProperties"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mail.composition"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.managedconfiguration.janitor")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MapKit.internal")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mediaaccessibility")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mediaaccessibility.public")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mediaremote")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.messagesbadgecontroller")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mmcs")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mms_override")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MobileAddressBook")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MobileAsset")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilecal")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilecal.alarmengine")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileme.fmf.assistant")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilenotes")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileslideshow")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MobileStore"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilestoresettings")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobile.SyncMigrator")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobiletimer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilevpn")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mt")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.NanoMailKit"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nanoprefsyncd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nanoprefsyncd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nanoprefsyncd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.NanoRegistry")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.network.eapclient.tls.TrustExceptions")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nike")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.OTASyncAgent"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.OTASyncState")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.OTASyncState"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.PeoplePicker")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.persistentconnection")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.persistentconnection-mcc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.Preferences")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences.datetime")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences.network")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences-sounds")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences.sounds")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.Sharing")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.softwareupdateservicesd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.SpeakSelection")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.telephonyutilities.dialassist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.twitterd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.ubd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.UIKit")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.videos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.voicemail")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.VoiceMemos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.VoiceOverTouch")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.voiceservices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.weather"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebUI")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.XCTest")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.youtube.dp"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.youtubeframework")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.skyhookwireless.wps"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain(".GlobalPreferences")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("itdbprepserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("kCFPreferencesAnyApplication")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("mediaremote")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([extension("com.apple.security.exception.shared-preference.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.accountsettings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.assistant"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.EmojiPreferences")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.GMM"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.internal.Voltaire"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.MailAccount-ExtProperties"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mail.composition"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mediaaccessibility.public")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.NanoMailKit"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.OTASyncAgent"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.OTASyncState"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.PeoplePicker")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.Preferences")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.youtube.dp"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.skyhookwireless.wps"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("container"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("container"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("container"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Applications")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/GameKit/Data")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData/Thumbnails")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.appletv.WhatsNew")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("platform-application",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/[-0-9A-Z]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/[-0-9A-Z]+/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdLib.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.adtracking.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppStore.plist"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.apsd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.atc.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.books.plist"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.books.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.books.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.celestial.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.certui.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.compass.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist"),require-entitlement("platform-application",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.dataaccessd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist"),require-entitlement("platform-application",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.facetime.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.frontrow.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.appletv.WhatsNew")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamed.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamekit.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imagent.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imdsmsrecordstore.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imessage.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iqagent.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itdbprep.server.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.LaunchServices.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.madrid.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MailAccount-ExtProperties.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mail.composition.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.managedconfiguration.janitor.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.messagesbadgecontroller.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mms_override.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAddressBook.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.alarmengine.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileme.fmf.assistant.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilenotes.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileStore.plist"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilestoresettings.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobile.SyncMigrator.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobiletimer.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilevpn.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.network.eapclient.tls.TrustExceptions.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.nike.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncState.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncState.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection-mcc.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.datetime.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.network.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences-sounds.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.restrictionspassword.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Search.framework.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.softwareupdateservicesd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist"),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.twitterd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ubd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voicemail.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VoiceMemos.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.weather.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtube.dp.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/itdbprepserver.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/mediaremote.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.AutoWake.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist"),require-entitlement("platform-application",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.BugReporter")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.Flytrap")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/GameKit/Data/[^/]+[.]gcdata$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Ringtones/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Application Support/Mail/Plugins/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.appletv.WhatsNew")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("platform-application",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/DataAccess/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mail/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory)])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/[-0-9A-Z]+/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailAccount-ExtProperties[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mail[.]composition[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncState[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]restrictionspassword[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]weather[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtube[.]dp[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.BugReporter")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.Flytrap")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.internal.Flytrap/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Snapshots/com.apple.internal.Flytrap/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Calendar/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/DataAccess/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mail/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Notes/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/PhotoData/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("compass-calibration")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("gyro-interrupt-calibration")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property-regex("^BackCamera"/i)])).
-profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("fairplay-client",[])])).
-profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([require-not(iokit-property-regex("die-id$"/i)),require-not(iokit-property-regex("chip-id$"/i)),require-not(iokit-property-regex("board-id$"/i)),require-not(iokit-property-regex(".+((die|chip)|board)-id$"/i)),require-not(iokit-property-regex("[Cc]alibration"/i)),require-not(iokit-property-regex(".+[Cc]alibration"/i)),require-not(iokit-property-regex("-mac-address"/i)),require-not(iokit-property-regex("mac-address-"/i)),require-not(iokit-property-regex(".+-mac-address"/i)),require-not(iokit-property-regex(".+mac-address-"/i)),require-not(iokit-property-regex("^AppleDiagnostic"/i))])).
-profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDLibUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-sem"),filters([extension("com.apple.sandbox.application-group")])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-sem"),filters([semaphore-owner(self)])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([extension("com.apple.sandbox.application-group")])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([ipc-posix-name-regex("^/mono[.][0-9]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.sandbox.application-group")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd"),require-entitlement("abs-client",[entitlement-value-regex(".+"/i)])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accessmanager")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.authmanager")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.oauthsigner")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPad.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPhone.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplay.sender.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ait.client")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AOSNotification"),require-entitlement("com.apple.aosnotification.aosnotifyd-access",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appleprofilepolicyd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aps.alertprovider.xpc"),require-entitlement("platform-application",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.keepDaemonAlive")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.messagingServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.notificationServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioConverterServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioFileServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioUnitServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.SystemSounds")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.checkin")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.watchdog")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.workspaceserverconnection")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.biometrickitd"),require-entitlement("com.apple.private.bmk.allow",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.observerconnection"),require-entitlement("com.apple.bulletinboard.observer",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.settingsconnection"),require-entitlement("com.apple.bulletinboard.settings",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.systemstateconnection"),require-entitlement("com.apple.bulletinboard.systemstate",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.utilitiesconnection"),require-entitlement("com.apple.bulletinboard.utilities",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bypassBasebandAutoBooter.msgport")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.certui.relay")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.clouddbd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.dm-helper")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.mobile-helper")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audioprocessingtap")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpe")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpeprotector")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreader")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.mutablecomposition")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videoqueue")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplay")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplayserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CrashCopy.OTA")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.crash_mover")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsCompAgent_armv7")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd.active")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.datamigrator.dz")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@0v3")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamecenter")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed.note")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.geod")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.distributednotification.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.distributednotification.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icfcallserver"),require-entitlement("com.apple.private.icfcallserver",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imavagent.embedded.auth")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.instruments.server.mig")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itdbprep.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.notifications.public")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.public")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lskdd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-dev")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-prod")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdservice")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled"),require-entitlement("com.apple.managedconfiguration.profiled-access",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponder")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponderHelper")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaControl.daemon")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing-nowake")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver.io")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileAccessoryUpdater")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileFileIntegrity")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerControllerInternal")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServerExists")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.notification_proxy")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilesafari-settings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebSheet")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.softwareupdated")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilestoredemod"),require-entitlement("com.apple.private.mobilestoredemo.enabledemo",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerControllerInternal")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServerExists")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networking.captivenetworksupport")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.OTATaskingAgent")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.library")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.prdaily")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ProgressReporting")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.DirectoryService")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.Jetsam")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SafetyNet")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.StackShot")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sandboxd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.scrod")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securekeyvaultd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd.xpc"),require-entitlement("platform-application",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sociald.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.alerts")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.blockableservices")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.icongeneration")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.remotenotifications")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.UIKit.migserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.watchdogserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.syncdefaultsd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sysmond")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController-priv"),require-entitlement("com.apple.networking.vpn.configuration",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.remotelogdaemon")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.twitterd.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.unfreed")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.avconference")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.camera")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vsassetd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wapi.client")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.weibod.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("PurplePPTServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver"),require-entitlement("com.apple.accessibility.api",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("absinthe-client",[entitlement-value-regex(".+"/i)])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.BugReporter")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.Flytrap")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([extension("com.apple.sandbox.application-group")])).
-profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("container"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
-profileRule(profile("container"),decision("allow"),operation("network-outbound"),filters([require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:23")))])).
-profileRule(profile("container"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078")))])).
-profileRule(profile("container"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("container"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("container"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("container"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("process-info-pidinfo"),filters([target(self)])).
-profileRule(profile("container"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("container"),decision("allow"),operation("signal"),filters([target(others),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("container"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("container"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("container"),decision("allow"),operation("system-info"),filters([require-entitlement("fairplay-client",[]),info-type("net.link.addr"),require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])).
-profileRule(profile("container"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("container"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("container"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Caches/com.apple.coresymbolicationd/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/System/Library/Caches/com.apple.coresymbolicationd/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("cplogd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("cplogd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("cplogd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("cplogd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("cplogd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/OpenGLES.framework/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/bin/codesign_allocate/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]cvmsCompAgent"/i)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("CVMServer"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/System/Library/Frameworks/OpenGLES.framework/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/usr/bin/codesign_allocate/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.autoincrement.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db-journal")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db-shm")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db-wal")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/com.apple.Bookmarks.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.].+binarycookies"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.]binarycookies"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Frameworks/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.dataaccess.dataaccessd/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.mobilesafari/ReadingListArchives/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/DataAccess/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/DataAccess/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/ManagedConfiguration/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Message/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mail/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.autoincrement.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db-journal")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db-shm")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db-wal")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/com.apple.Bookmarks.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.].+binarycookies"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.]binarycookies"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.dataaccess.dataaccessd/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/DataAccess/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Calendar/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/DataAccess/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/DataAccess/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/ManagedConfiguration/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/Message/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mail/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Notes/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Safari")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.mobilesafari/ReadingListArchives/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("signal"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("system-sched"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/WebClips/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataActivation.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilesafari.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtube.dp.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itdbprep.postprocess.lock")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation-"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp-"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]DataActivation[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/[.]dat"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]DataActivation.savedState/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]DataActivation-.+[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]DataActivation[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/group")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/hosts")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/passwd")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/protocols")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/services")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Safari/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/DataActivation.app/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/MobileSafari.app/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Ringtones/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/Safari/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]DataActivation.savedState"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itdbprep.postprocess.lock")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp-"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]DataActivation[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilesafari[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtube[.]dp[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]dat"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation-"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]DataActivation[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]DataActivation.savedState/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Safari/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Applications/DataActivation.app/DataActivation")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Applications/MobileSafari.app/MobileSafari")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Applications")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app/"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[.]app$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[^/]+[.]app$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[.]app/"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[^/]+[.]app/"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/private/var/mobile/"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("debugserver"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("mach-priv-task-port"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("localhost:*"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),remote(tcp("localhost:*"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([regex("^/private/var/run/lockdown/checkin"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("debugserver"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications//[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications//[.]app$"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app$"/i)),require-not(regex("^/private/var/mobile/Applications//[^/]+[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications//[^/]+[.]app$"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i))])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-fork"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("signal"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("debugserver"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pfd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([local(ip("*:*"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.conference.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamecenter.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamed.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VideoConference.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/gamed")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/gamed"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]gamed"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]gamed"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Applications/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.gamed/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/GameKit/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/GameKit/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/awd/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/GameKit/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/gamed"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]gamed"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]gamed"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]conference[.]plist"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]gamecenter[.]plist"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]gamed[.]plist"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]logging[.]plist"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.gamed/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/GameKit/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/GameKit/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/awd/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/GameKit/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("gamed"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamecenter")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("gamed"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:*"))])).
-profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([remote(ip("*:*"))])).
-profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("gamed"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/usr/libexec/gamed")])).
-profileRule(profile("gamed"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("gamed"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("gamed"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("gamed"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("geod"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("geod"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("geod"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("geod"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("geod"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("geod"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.GeoServices")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Maps/MapTiles")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb-journal")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/MapTiles")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb-journal")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.GeoServices/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("geod"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb")])).
-profileRule(profile("geod"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb")])).
-profileRule(profile("geod"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb-journal")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb-journal")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GEO[.]plist"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GMM[.]plist"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.GeoServices/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("geod"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("geod"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("geod"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("geod"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gmmd.cookie")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([remote(ip("*:*"))])).
-profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("geod"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("geod"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("geod"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("geod"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/GPUTools/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Caches/com.apple.opengl/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.appwatchdog")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lockdown.host_watcher")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.icongeneration")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-priv-task-port"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/gputoolsdhelper.sock")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([local(tcp("localhost:*"))])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/var/run/lockdown/checkin"/i)])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Developer/usr/libexec/gputoolsd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("signal"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/ea")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iap2d.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iapd.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iaptransportd.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/haywire"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/iap2d"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/iapd"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/mp"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistivetouchd[.]enabled[.]launchd"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iap2d/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/Panics/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Radio/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/sbin/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/haywire"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/iap2d"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/iapd"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/mp"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistivetouchd[.]enabled[.]launchd"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iap2d[.]plist"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iapd[.]plist"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iaptransportd[.]plist"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]videos[.]plist"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iap2d/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/Panics/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Radio/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("iapd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("iapd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("iapd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.iap2d.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("iapd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.iaptransportd.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("iapd"),decision("allow"),operation("network-bind"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:*"))])).
-profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([remote(udp("*:*"))])).
-profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("iapd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/IAP.framework/Support/iap2d")])).
-profileRule(profile("iapd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/IAP.framework/Support/iapd")])).
-profileRule(profile("iapd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("iapd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("iapd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ids.plist")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imdsmsrecordstore.plist")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/SMSMigrator/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]imdsmsrecordstore[.]plist"/i)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/SMSMigrator/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.search.appindexer")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.searchd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension-class("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Application Support")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.librariand.plist")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand.+[.]log"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand[.]log"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Librarian/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand.+[.]log"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand[.]log"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]appleaccount[.]plist"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]librariand[.]plist"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Librarian/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("librariand"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("librariand"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ubd")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("librariand"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("librariand"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("librariand"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("librariand"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("system-info"),filters([info-type("hw.uuid")])).
-profileRule(profile("librariand"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.purplebuddy.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/lockdownd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Preferences/com[.]apple[.]mobile[.]lockdownd[.]plist"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Lockdown/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/Preferences.app/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/logs/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Applications/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Voicemail/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/preferences/SystemConfiguration/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/root/Library/Lockdown/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/run/lockdown/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(directory)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-write-mode"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/com[.]apple[.]eapolclient[.]plist"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/com[.]apple[.]ipsec[.]plist"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Preferences/com[.]apple[.]mobile[.]lockdownd[.]plist"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/logs/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Lockdown/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/lockdown/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleEffaceableStorageUserClient")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleNANDFTLUserClient")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("iokit-set-properties"),filters([iokit-property("auto-boot")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.afcd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AOSNotification")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atc")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.crash_mover")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.crashreportcopymobile")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lockdown.host_watcher")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.assertion_agent")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installation_proxy")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.notification_proxy")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.syslog_relay")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.timed.xpc")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("*:62078"))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/lockdown/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockbot")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/random")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/urandom")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/AppleTV/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb-journal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdLib.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.airplay.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appletvservices.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.apsd.launchd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.celestial.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CrashReporter.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iqagent.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.LaunchServices.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.datetime.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences-sounds.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.soundpref.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.storebookkeeper.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/preferences.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/.+$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide-"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/awd/awd-AppleTV.log"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]lowtide"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]lowtide"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]frontrow[.]"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]lowtide[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]lowtide.savedState/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]lowtide-.+[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]lowtide[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/AppleTV.app/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/AppleTV.app.dSYM/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/logs/CrashReporter/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Documents/var/nrd/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Front Row/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/AppleTV/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.Radio/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Ubiquity/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/MediaStream/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Radio/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/MobileSoftwareUpdate/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Updates/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/AirTunes/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Documents")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Documents/var")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]lowtide.savedState"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Media")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-flags"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-mode"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/Front Row")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone/localtime")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb-journal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.apsd.launchd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/tmp/MediaControlServer.log")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/awd/awd-AppleTV.log"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdLib[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]aggregated[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]airplay[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]appletvservices[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]celestial[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]coremedia[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]CrashReporter[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]demo-settings[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]frontrow[.]"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iqagent[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mmcs[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]preferences[.]datetime[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]preferences-sounds[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]soundpref[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]storebookkeeper[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]voiceservices[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/.+$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide-"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]lowtide"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]lowtide"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]lowtide[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]lowtide.savedState/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(directory),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Documents/var/nrd/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Front Row/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/AppleTV/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iLifeSlideshow/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.Radio/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/Ubiquity/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/MediaStream/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Radio/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/MobileSoftwareUpdate/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/AirTunes/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Updates/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleNANDFTLUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVAudioInterfaceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVControllerUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVDeviceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVServiceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVVideoInterfaceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPAudioInterfaceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPControllerUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPDeviceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPDisplayInterfaceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPServiceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.adid")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated.addaily")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atvitunescloudd.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.checkin")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.workspaceserverconnection")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpe")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreader")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreaderloader")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videoqueue")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplay")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CrashCopy.OTA")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.frontrow.tracerouteix")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.obliteration")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.softwareupdated")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.timed.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tzlink")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.keepalive")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wirelessproxd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("PurplePPTServer")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.coremedia.customurlhandler")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.airplay.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]appletv$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]appletv[.]"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]lowtide$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]lowtide[.]"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/Applications/AppleTV.app/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("system-fsctl"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("system-info"),filters([info-type("hw.uuid")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.bulletinboard.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mail.composition.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService-"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailCompositionService[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MailCompositionService.savedState/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MailCompositionService-.+[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MailCompositionService[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/MailCompositionService.app/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MailCompositionService.savedState"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mail[.]composition[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService-"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailCompositionService[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MailCompositionService.savedState/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.utilitiesconnection")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]dataaccess[.]dataaccessd"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([literal("/Library/Keychains/System.keychain")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([literal("/private/var/db/crls/crlcache.db")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/dev/console")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/com.apple.crypto.plist")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/SystemConfiguration/com.apple.nat.plist")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/SystemConfiguration/com.apple.PowerManagement.plist")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/SystemConfiguration/preferences.plist")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Security/Trust Settings/Admin.plist")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/private/etc")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/private/etc/hosts")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/private/var/preferences/SystemConfiguration/preferences.plist")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/usr/sbin")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/usr/sbin/mDNSResponder")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),regex("^/Library/Preferences/ByHost/[.]GlobalPreferences[.]"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),regex("^/Library/Preferences/com[.]apple[.]security[.]"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),regex("^/Library/Preferences/[.]GlobalPreferences[.]"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([subpath("/private/var/db/mds/")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([subpath("/private/var/tmp/mds/")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/private/var/db/dyld/")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/System/")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/lib/")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/share/")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Managed Preferences")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Library/Preferences/")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Managed Preferences/mobile")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Managed Preferences/mobile/com.apple.mDNSResponder.plist")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/db/mds/[0-9]+$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/db/mds/[0-9]+/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/C/mds$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/C/mds/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/tmp/mds/[0-9]+$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/tmp/mds/[0-9]+/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/console")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/null")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/zero")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/cores/"/i),require-not(file-mode("#o0000"))])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/db/mds/[0-9]+$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/db/mds/[0-9]+/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/C/mds$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/C/mds/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/mds/[0-9]+$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/mds/[0-9]+/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("mDNSOffloadUserClient")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("NVEthernetUserClientMDNS")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("wlDNSOffloadUserClient")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awacs")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.blued")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bsd.dirhelper")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications.2")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponderHelper")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ocspd")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SecurityServer")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.snhelper")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.DirectoryService.libinfo_v1")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webcontentfilter.dns")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.d2d.ipc")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("system-socket"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/AppleInternal/Library/Conference/Environments.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/AppleInternal/Library/Preferences/com.apple.airplay.dashboard.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/CoreMotion/CoreMotion.log")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.airplay.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.audio.virtualaudio.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.celestial.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.conference.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.facetime.bag.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.facetime.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ids.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imessage.bag.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences-sounds.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.settings.bluetooth.audio-route.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VideoConference.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VideoProcessing.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/tmp/AirTunesHALPlugin.log")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/sbin/mediaserverd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd/"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/AirPlay[.]log"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/mediaserverd"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/logs/mediaserverd/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/awd/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/DCIM/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Downloads/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Music/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Sync/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoStreamsData/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Recordings/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/wireless/Library/Logs/awd/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/local/lib/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/local/share/firmware/isp/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/sbin/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/CoreMotion")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/CoreMotion/CoreMotion.log")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/tmp/AirTunesHALPlugin.log")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd/"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/AirPlay[.]log"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/mediaserverd"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]airplay[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]audio[.]virtualaudio[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]avfoundation[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]celestial[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]conference[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]coreaudio[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]coremedia[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]facetime[.]bag[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]facetime[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]imessage[.]bag[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/logs/mediaserverd/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/awd/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/DCIM/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Downloads/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Music/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/PhotoData/Sync/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/PhotoStreamsData/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Recordings/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/Library/Logs/awd/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH2CamInUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH3CamInUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH4CamInUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH6CamInUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXD375UserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXD390UserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXD393UserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXE380UserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("H3H264VideoEncoderDriverUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccessoryManagerUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAudio2DeviceUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAudio2TransformerUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAudioCodecsUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDLibUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDResourceDeviceUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOStreamAudioUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOUSBInterfaceUserClientV2")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^[0-9A-F][0-9A-F]:+[0-9A-F][0-9A-F]-tacl$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleABL[.]."/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAudioQueue[.]."/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAudioQueue[.].+"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAURemoteIO[.]."/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAURemoteIO[.].+"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^com[.]apple[.]audio[.]abl[.]"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^shm_notif[.][^.]+[.][RW]$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_acl")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_read")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_write")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.SystemSounds")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.virtualdisplayserver")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.filesystems.userfsd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.distributednotification.server")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.xpc")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.distributednotification.server")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.xpc")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lskdd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.NetworkLinkConditioner")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securekeyvaultd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WirelessCoexManager")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.midiserver.io")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]coremedia[.]"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("*:*"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:*"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([remote(udp("*:*"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),debug-mode,literal("/usr/bin/syslog")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),debug-mode,literal("/usr/bin/trace")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/usr/sbin/mediaserverd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-fork"),filters([debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("system-suspend-resume"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),literal("/private/var/mobile/Library/VoiceServices")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),subpath("/private/var/mobile/Library/Assets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),subpath("/private/var/mobile/Library/PreinstalledAssets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/VoiceServices")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/mobileassetd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/mobileassetd$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/mobileassetd/"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Cookies$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/PreinstalledAssets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/PreinstalledAssets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/root/Library/Caches/mobileassetd/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/VoiceServices")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/mobileassetd$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/mobileassetd/"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Cookies$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Assets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/PreinstalledAssets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Caches/mobileassetd/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("system-sched"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.calendardiagnostics.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.timezones.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal-"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Calendar$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Calendar/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/Calendar$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/Calendar/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobilecal.savedState/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobilecal-.+[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobilecal[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Frameworks/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/MobileCal.app/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Ringtones/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobilecal.savedState"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Calendar$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Calendar/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/Calendar$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/Calendar/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]calendardiagnostics[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]timezones[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal-"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobilecal.savedState/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("MobileCal"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-data"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/GeoJSON$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-data"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/GeoJSON$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences/SystemConfiguration")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Applications")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/aes_0")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/null")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/ptmx")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/random")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/urandom")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/zero")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/Library/Preferences/SystemConfiguration/com.apple.afc.DeviceInfo.plist")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/private/var/mobile/Library/Preferences/com.apple.afc.plist")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec/mobile_house_arrest")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.backedup.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.internal.Voltaire.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Maps.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mms_override.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.weather.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.skyhookwireless.wps.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/GeoJSON"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]Maps"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]Maps"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/.+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps-"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Maps[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]Maps.savedState/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]Maps-.+[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]Maps[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/group")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/hosts")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/passwd")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/protocols")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/services")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Ringtones/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Bundles/MapsInternalExtras.bundle/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/Maps.app/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/Maps/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Maps/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]Maps.savedState"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/GeoJSON"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]Maps"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]Maps"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistant[.]backedup[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistant[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GMM[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]internal[.]Voltaire[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Maps[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]skyhookwireless[.]wps[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/.+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps-"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Maps[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]Maps.savedState/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(directory),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Maps/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Maps/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([debug-mode,regex("^/private/var/mobile/Media/Pano_[0-9]"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/AppleInternal/Library/Preferences/com.apple.airplay.dashboard.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/awd")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/awd/awdComponent0x19.log")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/MobileSlideShow.log")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.act.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.airplay.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.compass.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.ImageCaptureFramework.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mms_override.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.videouploadplugins.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.notbackedup.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera-"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow-"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]camera[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]camera.savedState/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobileslideshow.savedState/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]camera-.*[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobileslideshow-.+[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/Snapshots/com.apple.camera/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/iTunes Library.itlp/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/awd")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]camera.savedState"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobileslideshow.savedState"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),debug-mode,regex("^/private/var/mobile/Media/Pano_[0-9]"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/awd/awdComponent0x19.log")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/MobileSlideShow.log")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Camera-latest[.]log"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]camera[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]videouploadplugins[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]notbackedup[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera-"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow-"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]camera[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]camera.savedState/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobileslideshow.savedState/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Snapshots/com.apple.camera/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mnt/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS-"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MobileSMS-.+[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/Library/Dictionaries/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/Library/Ringtones/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS-"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("nointernet"),decision("allow"),operation("file-chroot"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
-profileRule(profile("nointernet"),decision("allow"),operation("fileSTAR"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
-profileRule(profile("nointernet"),decision("allow"),operation("file-write-create"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
-profileRule(profile("nointernet"),decision("allow"),operation("network-bind"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
-profileRule(profile("nointernet"),decision("allow"),operation("network-inbound"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
-profileRule(profile("nointernet"),decision("allow"),operation("network-outbound"),filters([regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)])).
-profileRule(profile("nointernet"),decision("allow"),operation("network-outbound"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
-profileRule(profile("nointernet"),decision("allow"),operation("networkSTAR"),filters([local(ip("*:*"))])).
-profileRule(profile("nointernet"),decision("allow"),operation("networkSTAR"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.nsnetworkd.readonly"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-journal")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-shm")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-wal")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Duet.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.nsnetworkd.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/Caches/com[.]apple[.]nsnetworkd/"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/com.apple.nsnetworkd/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/Caches/com[.]apple[.]nsnetworkd$"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-journal")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-shm")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-wal")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/Caches/com[.]apple[.]nsnetworkd/"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/com[.]apple[.]nsnetworkd/"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]nsnetworkd[.]plist"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/com.apple.nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.xpc")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("passd"),decision("allow"),operation("distributed-notification-post"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("passd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("passd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.passd.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd/"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]passd"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]passd"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Passes/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("passd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd/"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]passd"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]passd"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]passd[.]plist"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Passes/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("passd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("passd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.carditemscontroller")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("passd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("passd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("passd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("passd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("passd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIKit.pboard/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.UIKit.pboard/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/Frameworks/UIKit.framework/Support/pasteboardd")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/pfm")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/pfm")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("pfd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/pfm")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("pfd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("pfd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("pfd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("pfd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("pfd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("pfd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("printd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("printd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("printd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("printd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("printd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("printd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.printd.plist")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd$"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd/"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/com.apple.printd/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/run/printd/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("printd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("printd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd$"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd/"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]printd[.]plist"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/com.apple.printd/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/printd/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("printd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("printd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("printd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("*:*"))])).
-profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("printd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("printd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("printd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("printd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([literal("/abc/ds")])).
-profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("safari")])])).
-profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("webapp")])])).
-profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("ally")])).
-profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("guard")])).
-profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/"),extension("librarian"),require-not(regex("^/reggie1$"/i)),require-not(regex("^/reggie2$"/i))])).
-profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/readpri/")])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([literal("/abc/ds")])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/Sys1$"/i)])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/Sys2$"/i)])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("safari")])])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("webapp")])])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/mobile/"),extension("ally")])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/mobile/"),extension("guard")])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/"),extension("librarian")])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/writepri/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ImageCaptureFramework.plist")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/ptpd[.]log$"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/"))])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/ptpd[.]log$"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]ImageCaptureFramework[.]plist"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("ptpd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ptpd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("ptpd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("ptpd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("ptpd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("ptpd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("ptpd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.quicklook.readonly"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.quicklook.readonly")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd-"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]quicklook[.]quicklookd[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]quicklook[.]quicklookd.savedState/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]quicklook[.]quicklookd-.+[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]quicklook[.]quicklookd[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/quicklookd.app/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]quicklook[.]quicklookd.savedState"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd-"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]quicklook[.]quicklookd[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]quicklook[.]quicklookd.savedState/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/sha1_0")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/preferences/SystemConfiguration/com.apple.ipsec.plist")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/etc/master.passwd/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/etc/racoon/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/racoon/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/etc")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/etc/localtime")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/tmp")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/var")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/private/var/db/dyld/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/System/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/lib/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/sbin/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/share/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/sha1_0")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/db/mds/messages/se_SecurityMessages")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.ipsec.plist")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Managed Preferences/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Preferences/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/master.passwd/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/racoon/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/root/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/run/racoon/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Keychains/System.keychain")])).
-profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/mds/system/mdsDirectory.db")])).
-profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/mds/system/mds.lock")])).
-profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/mds/system/mdsObject.db")])).
-profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/log/racoon.log")])).
-profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/var/log/racoon.log")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/null")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/sha1_0")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/zero")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/racoon.pid")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/racoon.sock")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/cores/"/i),require-not(file-mode("#o0000"))])).
-profileRule(profile("racoon"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("racoon"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
-profileRule(profile("racoon"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("racoon"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("com.apple.AppleDatabaseChanged")])).
-profileRule(profile("racoon"),decision("allow"),operation("ipc-posixSTAR"),filters([ipc-posix-name("com.apple.securityd")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bsd.dirhelper")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ocspd")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SecurityServer")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.DirectoryService.libinfo_v1")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.net.ipsec_control")])).
-profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
-profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([subpath("/private/var/tmp/launchd/")])).
-profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/racoon.sock")])).
-profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:4500"))])).
-profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:500"))])).
-profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),remote(udp("*:*"))])).
-profileRule(profile("racoon"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("racoon"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("sysctlSTAR"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("sysctl-write"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("racoon"),decision("allow"),operation("system-socket"),filters([])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([literal("/abc/ds")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("ally"),extension("hexproof")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("ally"),extension("vigilance")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("guard"),extension("hexproof")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("guard"),extension("vigilance")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("flying"),extension("hexproof")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("flying"),extension("vigilance")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("trample"),extension("hexproof")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("trample"),extension("vigilance")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/readpri/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/MobileSoftwareUpdate")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/MobileSoftwareUpdate")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSoftwareUpdate.plist")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/MobileSoftwareUpdate/restore.log")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/MobileSoftwareUpdate")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/MobileSoftwareUpdate/restore.log")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/OTAUpdate-"/i)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/aes_0")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/dtracehelper")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/null")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/ptmx")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/random")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/urandom")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/zero")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.stocks.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks-"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]stocks[.]plist"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Stocks$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Stocks/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]stocks-.+[.]plist"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]stocks[.]plist"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/Library/Dictionaries/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks-"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]stocks[.]plist"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Stocks$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Stocks/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("Stocks"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("Stocks"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("Stocks"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("Stocks"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("Stocks"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.StreamingUnzipService")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.StreamingUnzipService.plist")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.StreamingUnzipService")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]StreamingUnzipService[.]plist"/i)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences/"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//Library/SyncedPreferences$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//Library/SyncedPreferences/"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd/"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SyncedPreferences/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences/"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications//Library/SyncedPreferences$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications//Library/SyncedPreferences/"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd/"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SyncedPreferences/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("signal"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("transitd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("transitd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Application Support/Containers$"/i)])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Application Support/Containers/"/i)])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Applications/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Inboxes/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/spool/mdt/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("transitd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("transitd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("transitd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("transitd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("transitd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("transitd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd$"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd/"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd$"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd/"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("userfsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.filesystems.userfs_helper")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("userfsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("userfsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("userfsd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/Filesystems/exfat.fs/Contents/Resources/fsck_exfat")])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-fork"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("userfsd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/disk[0-9]+"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/rdisk[0-9]+"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/disk[0-9]+"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/rdisk[0-9]+"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper$"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper/"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/disk[0-9]+"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/rdisk[0-9]+"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper$"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper/"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Vibrations/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/Vibrations")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Vibrations/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i),extension("com.apple.vpn-plugin")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+.vpnplugin$"/i),extension("com.apple.vpn-plugin")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+.vpnplugin/"/i),extension("com.apple.vpn-plugin")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/tmp/")),require-not(subpath("/private/var/mobile/Library/")),require-not(subpath("/private/var/mobile/Library/Preferences/")),require-not(subpath("/private/var/logs/")),require-not(subpath("/private/var/ea/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i))])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-sem"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("mach-register"),filters([global-name("com.f5.f5_sslvpn_plugin")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebSheet.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet-"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebSheet[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]WebSheet.savedState/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]WebSheet-.+[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]WebSheet[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/Library/Dictionaries/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/WebSheet.app/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]WebSheet.savedState"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebSheet[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet-"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebSheet[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]WebSheet.savedState/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.certui.relay")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.eventpump")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.messageuiservices")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilesafari-settings")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networking.captivenetworksupport")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Applications/WebSheet.app/WebSheet")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/AdSheet.pl b/profile_compilation/prologFactsForProfiles/AdSheet.pl
deleted file mode 100644
index ab5eff7..0000000
--- a/profile_compilation/prologFactsForProfiles/AdSheet.pl
+++ /dev/null
@@ -1,603 +0,0 @@
-
-
-profileDefault(profile("AdSheet"),decision("deny")).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdLib.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdSheetPad.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdSheetPhone.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.reminders.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.adtracking.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iad.adlibd/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iad.LocationPermissions/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPhone/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPad/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iTunesStore/URLCache/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/.+$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPhone/(?|.+)$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPhone[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]AdSheetPad-.+[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]AdSheetPhone-.*[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad-"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone-"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData/Thumbnails")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdLib[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPhone[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]reminders[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iad.adlibd/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iad.LocationPermissions/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPhone/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.AdSheetPad/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iTunesStore/URLCache/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPad/.+$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]AdSheetPhone/(?|.+)$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPad[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdSheetPhone[.]plist"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad-"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPad$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone-"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]AdSheetPhone$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPad[.]settings/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]AdSheetPhone[.]settings/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPad$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]AdSheetPhone$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(directory),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPad.savedState"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]AdSheetPhone.savedState"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.iAd.cookiedb")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.geod")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.twitterd.server")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.deleted")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.library")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.messageuiservices")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]iad[.]"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gmmd.cookie")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.eventpump")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd.active")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.chatkit.clientcomposeserver.xpc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ait.client")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.oauthsigner")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("AdSheet"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("AdSheet"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("AdSheet"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("AdSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("AdSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/AppleDiags.pl b/profile_compilation/prologFactsForProfiles/AppleDiags.pl
deleted file mode 100644
index 52ef97b..0000000
--- a/profile_compilation/prologFactsForProfiles/AppleDiags.pl
+++ /dev/null
@@ -1,273 +0,0 @@
-
-
-profileDefault(profile("AppleDiags"),decision("deny")).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/null")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/dev/"))])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/zero")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/random")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/urandom")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/aes_0")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/ptmx")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/dtracehelper")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Meda/DCIM/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-sem"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("networkSTAR"),filters([require-not(literal("/private/var/tmp/ubiquity.socket")),require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/syslog")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/printd")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.network.statistics")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.netsrc")])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("AppleDiags"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/Aquarium.pl b/profile_compilation/prologFactsForProfiles/Aquarium.pl
deleted file mode 100644
index 0adba16..0000000
--- a/profile_compilation/prologFactsForProfiles/Aquarium.pl
+++ /dev/null
@@ -1,288 +0,0 @@
-
-
-profileDefault(profile("Aquarium"),decision("deny")).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/null")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/dev/"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/zero")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/random")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/urandom")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/aes_0")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/ptmx")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/dev/dtracehelper")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/DCIM/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-sem"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("networkSTAR"),filters([require-not(literal("/private/var/tmp/ubiquity.socket")),require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
-profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/syslog")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/printd")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.network.statistics")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.netsrc")])).
-profileRule(profile("Aquarium"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-fork"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("Aquarium"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("Aquarium"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("Aquarium"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/BTServer.pl b/profile_compilation/prologFactsForProfiles/BTServer.pl
deleted file mode 100644
index c305b48..0000000
--- a/profile_compilation/prologFactsForProfiles/BTServer.pl
+++ /dev/null
@@ -1,235 +0,0 @@
-
-
-profileDefault(profile("BTServer"),decision("deny")).
-profileRule(profile("BTServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.sandbox.pty"),regex("^/dev/ttys[0-9]"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.sandbox.pty"),regex("^/dev/ttys[0-9]+"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.BTServer.airplane.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.BTServer.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.devices.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.ledevices.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.services.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileBluetooth.debug.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/wireless/Library/CallHistory")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/wireless/Library/CallHistory/call_history.db-journal")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Application Support/BTServer")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Application Support/BTServer/pincode_defaults.db")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Application Support/BTServer/pincode_defaults.db-journal")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/wireless/Library/Logs/awd/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/BTServer"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications//"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/private/var/preferences/SystemConfiguration/preferences.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/usr/sbin")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/usr/sbin/BTServer")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([subpath("/System/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-data"),filters([literal("/dev/btwake")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/usr/sbin/BTServer")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/usr/sbin")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/wireless/Library")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/wireless")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db-journal")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]BTServer[.]airplane[.]plist"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]BTServer[.]plist"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileBluetooth[.]devices[.]plist"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileBluetooth[.]ledevices[.]plist"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileBluetooth[.]services[.]plist"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer/pincode_defaults.db-journal")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer/pincode_defaults.db")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/CrashReporter/hci")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/BTServer"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/Library/Logs/awd/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications//"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/BTServer/pincode_defaults.db")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("BTServer"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDResourceDeviceUserClient")])).
-profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleBasebandUserClient")])).
-profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
-profileRule(profile("BTServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOUserEthernetResourceUserClient")])).
-profileRule(profile("BTServer"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tacl.R")])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tacl.W")])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tsco.R")])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_notif.tsco.W")])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_read")])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_write")])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^..:..:..:..:..:..-tacl$"/i)])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BTServer"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BlueTool")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ProgressReporting")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.xpc")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WirelessCoexManager")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTServer.map")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTServer.le")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTServer.avrcp")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.BTAudioHALPlugin.xpc")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("BTServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("BTServer"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("BTServer"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("BTServer"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("BTServer"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("BTServer"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/BlueTool.pl b/profile_compilation/prologFactsForProfiles/BlueTool.pl
deleted file mode 100644
index 8e4bd49..0000000
--- a/profile_compilation/prologFactsForProfiles/BlueTool.pl
+++ /dev/null
@@ -1,141 +0,0 @@
-
-
-profileDefault(profile("BlueTool"),decision("deny")).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/bluetool/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/bt$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/bt.+$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-data"),filters([literal("/dev/btwake")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-data"),filters([literal("/dev/btreset")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bt$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bt.+$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleBasebandUserClient")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("BlueTool"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("BlueTool"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("BlueTool"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("BlueTool"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("BlueTool"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("BlueTool"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/CFNetworkAgent.pl b/profile_compilation/prologFactsForProfiles/CFNetworkAgent.pl
deleted file mode 100644
index 365f502..0000000
--- a/profile_compilation/prologFactsForProfiles/CFNetworkAgent.pl
+++ /dev/null
@@ -1,127 +0,0 @@
-
-
-profileDefault(profile("CFNetworkAgent"),decision("deny")).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("CFNetworkAgent"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/CVMServer.pl b/profile_compilation/prologFactsForProfiles/CVMServer.pl
deleted file mode 100644
index 57ffe5d..0000000
--- a/profile_compilation/prologFactsForProfiles/CVMServer.pl
+++ /dev/null
@@ -1,125 +0,0 @@
-
-
-profileDefault(profile("CVMServer"),decision("deny")).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/OpenGLES.framework/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/bin/codesign_allocate/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]cvmsCompAgent"/i)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("CVMServer"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("CVMServer"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/usr/bin/codesign_allocate/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/System/Library/Frameworks/OpenGLES.framework/")])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("CVMServer"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("CVMServer"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/CommCenter.pl b/profile_compilation/prologFactsForProfiles/CommCenter.pl
deleted file mode 100644
index 78729b4..0000000
--- a/profile_compilation/prologFactsForProfiles/CommCenter.pl
+++ /dev/null
@@ -1,178 +0,0 @@
-
-
-profileDefault(profile("CommCenter"),decision("deny")).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bbcdc[.]"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/dlci[.]spi-baseband[.]"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/cu.debug")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.umts")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.spi-baseband")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.debug.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/mux.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.umts")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/mux.spi-baseband")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/AeneasCustomFlags.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/CallHistory/call_history[.]db$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Voicemail/voicemail[.]db$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/LASD/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.cellulardataplan.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.commcenter.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.operator.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iqagent.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.tethering_override.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videoconference_override.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/tmp/csilock")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/tmp/CSI[.]scratch"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.debug")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/bbcdc[.]"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/dlci[.]spi-baseband[.]"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/cu.debug")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/uart.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/"))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/bbcdc[.]"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/dlci[.]spi-baseband[.]"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/cu.debug")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.debug.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.log")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/uart.umts")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/mux.spi-baseband")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/preferences/AeneasCustomFlags.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/CallHistory/call_history[.]db$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Voicemail/voicemail[.]db$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/LASD/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/tmp/csilock")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/csidata$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/csidata[.]tmp$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist-lock$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist-new$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/preferences/SystemConfiguration/preferences.plist-lock")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/CSI[.]scratch"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/logs/log-bb-live-stats.txt")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/logs/CoreTelephonyTraceScratch")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CrashReporter/Baseband/log-bb-$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CrashReporter/Baseband/log-bb-.+$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CoreTelephonyTrace$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CoreTelephonyTrace/log-bb-$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CoreTelephonyTrace/log-bb-.+$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/CommCenter/spool/loading")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-write-mode"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.commcenter.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-write-owner"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.commcenter.plist")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]CoreTelephony[.]LogChannel[.]$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]CoreTelephony[.]LogChannel[.][-0-9A-F]+$"/i)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.CommCenter.lasd")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),socket-domain(af_system),socket-protocol(1)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("CommCenter"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("CommCenter"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("CommCenter"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("CommCenter"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(1)])).
-profileRule(profile("CommCenter"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/DataActivation.pl b/profile_compilation/prologFactsForProfiles/DataActivation.pl
deleted file mode 100644
index ccfde5f..0000000
--- a/profile_compilation/prologFactsForProfiles/DataActivation.pl
+++ /dev/null
@@ -1,324 +0,0 @@
-
-
-profileDefault(profile("DataActivation"),decision("deny")).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/WebClips/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Ringtones/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]DataActivation[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]DataActivation[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]DataActivation-.+[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation-"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]DataActivation.savedState/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataActivation.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilesafari.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtube.dp.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/DataActivation.app/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Safari/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/MobileSafari.app/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/Safari/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itdbprep.postprocess.lock")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/[.]dat"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp-"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/services")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/hosts")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/group")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/passwd")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist")),require-not(literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")),literal("/private/etc/protocols")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Safari/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itdbprep.postprocess.lock")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp-"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]webapp$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]dat"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]DataActivation[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilesafari[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtube[.]dp[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]DataActivation[.]plist"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation-"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]DataActivation$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]DataActivation[.]settings/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]DataActivation.savedState/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]DataActivation$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]DataActivation.savedState"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("DataActivation"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Applications/MobileSafari.app/MobileSafari")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Applications/DataActivation.app/DataActivation")])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("DataActivation"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("DataActivation"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("DataActivation"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/IMDPersistenceAgent.pl b/profile_compilation/prologFactsForProfiles/IMDPersistenceAgent.pl
deleted file mode 100644
index 4cafa2a..0000000
--- a/profile_compilation/prologFactsForProfiles/IMDPersistenceAgent.pl
+++ /dev/null
@@ -1,130 +0,0 @@
-
-
-profileDefault(profile("IMDPersistenceAgent"),decision("deny")).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/SMSMigrator/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imdsmsrecordstore.plist")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ids.plist")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]imdsmsrecordstore[.]plist"/i)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/SMSMigrator/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.searchd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.search.appindexer")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("IMDPersistenceAgent"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/Lowtide.pl b/profile_compilation/prologFactsForProfiles/Lowtide.pl
deleted file mode 100644
index cf2bec9..0000000
--- a/profile_compilation/prologFactsForProfiles/Lowtide.pl
+++ /dev/null
@@ -1,505 +0,0 @@
-
-
-profileDefault(profile("Lowtide"),decision("deny")).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/random")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/urandom")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/AppleTV/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]lowtide[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]lowtide[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]lowtide-.+[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide-"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]lowtide.savedState/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/.+$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]lowtide"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]lowtide"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb-journal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdLib.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CrashReporter.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.airplay.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appletvservices.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.celestial.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iqagent.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences-sounds.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.datetime.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.soundpref.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.storebookkeeper.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.LaunchServices.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/preferences.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/logs/CrashReporter/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/AppleTV.app.dSYM/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/AppleTV.app/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Front Row/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/AirTunes/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]frontrow[.]"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.Radio/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Radio/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.apsd.launchd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Documents/var/nrd/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/awd/awd-AppleTV.log"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/MediaStream/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Ubiquity/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/AppleTV/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/MobileSoftwareUpdate/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Updates/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb-journal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Application Support/Front Row")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/tmp/MediaControlServer.log")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iLifeSlideshow/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone/localtime")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Front Row/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/AirTunes/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.Radio/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Radio/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.apsd.launchd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Documents/var/nrd/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/MediaStream/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/Ubiquity/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/AppleTV/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/MobileSoftwareUpdate/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mmcs[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/awd/awd-AppleTV.log"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]frontrow[.]"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]AdLib[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]CrashReporter[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]airplay[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]aggregated[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]appletvservices[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]celestial[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]coremedia[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]demo-settings[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iqagent[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]preferences-sounds[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]preferences[.]datetime[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]soundpref[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]storebookkeeper[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]voiceservices[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]lowtide[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide-"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]lowtide$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]lowtide[.]settings/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]lowtide.savedState/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide/"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]lowtide$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]lowtide/.+$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]lowtide"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]lowtide"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(directory),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Documents")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Documents/var")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Media")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]lowtide.savedState"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/ADDataStore.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-flags"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-mode"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Updates/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleNANDFTLUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPServiceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPDisplayInterfaceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPDeviceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPControllerUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IODPAudioInterfaceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVServiceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVVideoInterfaceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVDeviceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVControllerUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAVAudioInterfaceUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("PurplePPTServer")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.coremedia.customurlhandler")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.frontrow.tracerouteix")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atvitunescloudd.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wirelessproxd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.keepalive")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tzlink")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.timed.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.softwareupdated")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.obliteration")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videoqueue")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplay")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreaderloader")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreader")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpe")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.workspaceserverconnection")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.checkin")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.adid")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated.addaily")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CrashCopy.OTA")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.airplay.xpc")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]appletv$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]appletv[.]"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]lowtide$"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]lowtide[.]"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("Lowtide"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/Applications/AppleTV.app/")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("system-fsctl"),filters([])).
-profileRule(profile("Lowtide"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("system-info"),filters([info-type("hw.uuid")])).
-profileRule(profile("Lowtide"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("Lowtide"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("Lowtide"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/MailCompositionService.pl b/profile_compilation/prologFactsForProfiles/MailCompositionService.pl
deleted file mode 100644
index 868f44a..0000000
--- a/profile_compilation/prologFactsForProfiles/MailCompositionService.pl
+++ /dev/null
@@ -1,420 +0,0 @@
-
-
-profileDefault(profile("MailCompositionService"),decision("deny")).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mail.composition.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/MailCompositionService.app/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.bulletinboard.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailCompositionService[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MailCompositionService[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MailCompositionService-.+[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService-"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MailCompositionService.savedState/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mail[.]composition[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailCompositionService[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService-"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MailCompositionService$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MailCompositionService[.]settings/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MailCompositionService.savedState/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService/"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MailCompositionService$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MailCompositionService.savedState"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]dataaccess[.]dataaccessd"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.utilitiesconnection")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("MailCompositionService"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/MobileCal.pl b/profile_compilation/prologFactsForProfiles/MobileCal.pl
deleted file mode 100644
index 96da17b..0000000
--- a/profile_compilation/prologFactsForProfiles/MobileCal.pl
+++ /dev/null
@@ -1,269 +0,0 @@
-
-
-profileDefault(profile("MobileCal"),decision("deny")).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Ringtones/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobilecal[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobilecal-.+[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal-"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobilecal.savedState/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/MobileCal.app/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/Calendar$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/Calendar/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Calendar$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Calendar/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.calendardiagnostics.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.timezones.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Frameworks/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]calendardiagnostics[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]timezones[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/Calendar$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/Calendar/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Calendar$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Calendar/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilecal[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal-"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobilecal$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobilecal[.]settings/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobilecal.savedState/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal/"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobilecal$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobilecal.savedState"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("MobileCal"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("MobileCal"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("MobileCal"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("MobileCal"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("MobileCal"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/MobileMaps.pl b/profile_compilation/prologFactsForProfiles/MobileMaps.pl
deleted file mode 100644
index e6f4af2..0000000
--- a/profile_compilation/prologFactsForProfiles/MobileMaps.pl
+++ /dev/null
@@ -1,344 +0,0 @@
-
-
-profileDefault(profile("MobileMaps"),decision("deny")).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]Maps"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]Maps"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/Maps.app/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Maps/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/GeoJSON"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/Maps/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mms_override.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.weather.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Maps.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.skyhookwireless.wps.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.backedup.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.internal.Voltaire.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Bundles/MapsInternalExtras.bundle/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Ringtones/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Maps[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]Maps[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]Maps-.+[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps-"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]Maps.savedState/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/.+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/hosts")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/services")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/protocols")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/passwd")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/etc/group")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Maps/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Maps/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Maps[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GMM[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]skyhookwireless[.]wps[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistant[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistant[.]backedup[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]internal[.]Voltaire[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/GeoJSON"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]Maps"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]Maps"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/network-constraints.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]iTunesStore/ISURLBag/com[.]apple[.]Maps/.+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Maps[.]plist"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps-"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]Maps$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]Maps[.]settings/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]Maps.savedState/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps/"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]Maps$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(directory),literal("/private/var/mobile/Media/iTunes_Control/iTunes")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]Maps.savedState"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.iTunesStore/ISURLBag")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("MobileMaps"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/MobileSMS.pl b/profile_compilation/prologFactsForProfiles/MobileSMS.pl
deleted file mode 100644
index ed4b6ae..0000000
--- a/profile_compilation/prologFactsForProfiles/MobileSMS.pl
+++ /dev/null
@@ -1,284 +0,0 @@
-
-
-profileDefault(profile("MobileSMS"),decision("deny")).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/Library/Ringtones/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]MobileSMS-.+[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS-"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/Library/Dictionaries/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS-"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]MobileSMS$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]MobileSMS[.]settings/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]MobileSMS$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileSMS[.]plist"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]MobileSMS.savedState"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("MobileSMS"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/MobileSlideShow.pl b/profile_compilation/prologFactsForProfiles/MobileSlideShow.pl
deleted file mode 100644
index d914f68..0000000
--- a/profile_compilation/prologFactsForProfiles/MobileSlideShow.pl
+++ /dev/null
@@ -1,441 +0,0 @@
-
-
-profileDefault(profile("MobileSlideShow"),decision("deny")).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/MobileSlideShow.log")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/Snapshots/com.apple.camera/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/iTunes Library.itlp/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/awd")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs/awd/awdComponent0x19.log")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/AppleInternal/Library/Preferences/com.apple.airplay.dashboard.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([debug-mode,regex("^/private/var/mobile/Media/Pano_[0-9]"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mms_override.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.act.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.airplay.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.compass.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.ImageCaptureFramework.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.videouploadplugins.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.notbackedup.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoStreamsData$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]camera[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]mobileslideshow-.+[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]camera-.*[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow-"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera-"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobileslideshow.savedState/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]camera.savedState/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SMS/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.springboard.sharedimagecache/Wallpaper/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/MobileSlideShow.log")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Snapshots/com.apple.camera/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Camera-latest[.]log"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/awd/awdComponent0x19.log")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),debug-mode,regex("^/private/var/mobile/Media/Pano_[0-9]"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]camera[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]videouploadplugins[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]notbackedup[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]camera[.]plist"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow-"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]mobileslideshow$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera-"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]camera$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]mobileslideshow[.]settings/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]camera[.]settings/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobileslideshow.savedState/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]camera.savedState/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mobileslideshow$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]camera$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Photos$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/PhotoData$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/DCIM$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug/"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Media/Debug$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/awd")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]mobileslideshow.savedState"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]camera.savedState"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mnt/")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("MobileSlideShow"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/PasteBoard.pl b/profile_compilation/prologFactsForProfiles/PasteBoard.pl
deleted file mode 100644
index 7c280d1..0000000
--- a/profile_compilation/prologFactsForProfiles/PasteBoard.pl
+++ /dev/null
@@ -1,94 +0,0 @@
-
-
-profileDefault(profile("PasteBoard"),decision("deny")).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIKit.pboard/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.UIKit.pboard/")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/Frameworks/UIKit.framework/Support/pasteboardd")])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("PasteBoard"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/SecureBackupAlert.pl b/profile_compilation/prologFactsForProfiles/SecureBackupAlert.pl
deleted file mode 100644
index d9e75fb..0000000
--- a/profile_compilation/prologFactsForProfiles/SecureBackupAlert.pl
+++ /dev/null
@@ -1,118 +0,0 @@
-
-
-profileDefault(profile("SecureBackupAlert"),decision("deny")).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("SecureBackupAlert"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/Stocks.pl b/profile_compilation/prologFactsForProfiles/Stocks.pl
deleted file mode 100644
index 21fb708..0000000
--- a/profile_compilation/prologFactsForProfiles/Stocks.pl
+++ /dev/null
@@ -1,257 +0,0 @@
-
-
-profileDefault(profile("Stocks"),decision("deny")).
-profileRule(profile("Stocks"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/zero")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/random")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/urandom")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/aes_0")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/ptmx")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/dtracehelper")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Stocks$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Stocks/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.stocks.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]stocks[.]plist"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]stocks[.]plist"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]stocks-.+[.]plist"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks-"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/Library/Dictionaries/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),literal("/dev/null")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]stocks[.]plist"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks-"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]stocks$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]stocks[.]settings/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]stocks$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/aes_0")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/ptmx")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/dev/dtracehelper")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]stocks[.]plist"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Stocks$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Stocks/"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]stocks.savedState"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("Stocks"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("Stocks"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("Stocks"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("Stocks"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("Stocks"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("Stocks"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("Stocks"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("Stocks"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("Stocks"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("Stocks"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/StreamingUnzipService.pl b/profile_compilation/prologFactsForProfiles/StreamingUnzipService.pl
deleted file mode 100644
index f5c438b..0000000
--- a/profile_compilation/prologFactsForProfiles/StreamingUnzipService.pl
+++ /dev/null
@@ -1,121 +0,0 @@
-
-
-profileDefault(profile("StreamingUnzipService"),decision("deny")).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.StreamingUnzipService.plist")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.StreamingUnzipService")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]StreamingUnzipService[.]plist"/i)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.StreamingUnzipService")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("StreamingUnzipService"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/WebSheet.pl b/profile_compilation/prologFactsForProfiles/WebSheet.pl
deleted file mode 100644
index 959da88..0000000
--- a/profile_compilation/prologFactsForProfiles/WebSheet.pl
+++ /dev/null
@@ -1,416 +0,0 @@
-
-
-profileDefault(profile("WebSheet"),decision("deny")).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/WebSheet.app/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/Library/Dictionaries/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.WebSheet.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/Library/Ringtones/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebSheet[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]WebSheet[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]WebSheet-.+[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet-"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]WebSheet.savedState/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-readSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist$"/i)),require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebSheet[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebSheet[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet-"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]WebSheet$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Documents/com[.]apple[.]WebSheet[.]settings/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]WebSheet.savedState/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet/"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]WebSheet$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/private/var/mobile/Library/Mail/AutoFetchEnabled")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist$"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]WebSheet.savedState"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networking.captivenetworksupport")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilesafari-settings")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.messageuiservices")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.eventpump")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.certui.relay")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("WebSheet"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Applications/WebSheet.app/WebSheet")])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("WebSheet"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("WebSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("WebSheet"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/accessoryd.pl b/profile_compilation/prologFactsForProfiles/accessoryd.pl
deleted file mode 100644
index 6cdbabb..0000000
--- a/profile_compilation/prologFactsForProfiles/accessoryd.pl
+++ /dev/null
@@ -1,110 +0,0 @@
-
-
-profileDefault(profile("accessoryd"),decision("deny")).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iapd.plist")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/"))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iapd[.]plist"/i)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("accessoryd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/usr/sbin/accessoryd")])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("accessoryd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("accessoryd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/afcd.pl b/profile_compilation/prologFactsForProfiles/afcd.pl
deleted file mode 100644
index 37ff92c..0000000
--- a/profile_compilation/prologFactsForProfiles/afcd.pl
+++ /dev/null
@@ -1,142 +0,0 @@
-
-
-profileDefault(profile("afcd"),decision("deny")).
-profileRule(profile("afcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.afc.root")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/AFCDEBUG")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec/afcd")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/null")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/zero")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/random")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/urandom")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/aes_0")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/ptmx")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/dtracehelper")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc/"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc$"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/private/var/mobile/Library/Preferences/com.apple.afc.plist")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.afc.root")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/Library/Preferences/SystemConfiguration/com.apple.afc.DeviceInfo.plist")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences/SystemConfiguration")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc/"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]afc$"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.afc.root")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("afcd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("afcd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("afcd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpchelper")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lockdown.host_watcher")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("afcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("afcd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/var/run/lockdown/checkin"/i)])).
-profileRule(profile("afcd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("afcd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("afcd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("afcd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("afcd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/apsd.pl b/profile_compilation/prologFactsForProfiles/apsd.pl
deleted file mode 100644
index 8dc4c60..0000000
--- a/profile_compilation/prologFactsForProfiles/apsd.pl
+++ /dev/null
@@ -1,128 +0,0 @@
-
-
-profileDefault(profile("apsd"),decision("deny")).
-profileRule(profile("apsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd/"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/preferences/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/CoreServices/SystemVersion$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/CoreServices/SystemVersion.+$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Keychains")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Keychains/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Managed Preferences/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Managed Preferences/mobile")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Preferences")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ApplePushService/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com.apple.persistentconnection"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("apsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd/"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]apsd$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/ApplePushService/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com.apple.persistentconnection"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("apsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("apsd"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("apsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("apsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("."/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex(".+"/i)])).
-profileRule(profile("apsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("apsd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/ApplePushService.framework/apsd")])).
-profileRule(profile("apsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("apsd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("apsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("apsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("apsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.GSSCred.pl b/profile_compilation/prologFactsForProfiles/com.apple.GSSCred.pl
deleted file mode 100644
index 3fe555b..0000000
--- a/profile_compilation/prologFactsForProfiles/com.apple.GSSCred.pl
+++ /dev/null
@@ -1,120 +0,0 @@
-
-
-profileDefault(profile("com.apple.GSSCred"),decision("deny")).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/db/heim-credential-store.archive")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/heim-credential-store.archive")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("com.apple.GSSCred"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.datadetectors.AddToRecentsService.pl b/profile_compilation/prologFactsForProfiles/com.apple.datadetectors.AddToRecentsService.pl
deleted file mode 100644
index f028cb8..0000000
--- a/profile_compilation/prologFactsForProfiles/com.apple.datadetectors.AddToRecentsService.pl
+++ /dev/null
@@ -1,137 +0,0 @@
-
-
-profileDefault(profile("com.apple.datadetectors.AddToRecentsService"),decision("deny")).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.plist")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Applications/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("com.apple.datadetectors.AddToRecentsService"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.sandboxd.pl b/profile_compilation/prologFactsForProfiles/com.apple.sandboxd.pl
deleted file mode 100644
index c881831..0000000
--- a/profile_compilation/prologFactsForProfiles/com.apple.sandboxd.pl
+++ /dev/null
@@ -1,43 +0,0 @@
-
-
-profileDefault(profile("com.apple.sandboxd"),decision("deny")).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-readSTAR"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-read-data"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-read-xattr"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/logs/CrashReporter/Sandbox-.+[.]plist"/i)])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/cores/"/i),require-not(file-mode("#o0000"))])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/zero")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/null")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.DirectoryService.libinfo_v1")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/sandbox[.]"/i)])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/tmp/[.]webdavUDS[.][^/]+$"/i)])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("com.apple.sandboxd"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.snhelper.pl b/profile_compilation/prologFactsForProfiles/com.apple.snhelper.pl
deleted file mode 100644
index d973ed8..0000000
--- a/profile_compilation/prologFactsForProfiles/com.apple.snhelper.pl
+++ /dev/null
@@ -1,119 +0,0 @@
-
-
-profileDefault(profile("com.apple.snhelper"),decision("deny")).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/var/mobile/Library/Caches/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.snhelper")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("com.apple.snhelper"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.tccd.pl b/profile_compilation/prologFactsForProfiles/com.apple.tccd.pl
deleted file mode 100644
index 93fca6c..0000000
--- a/profile_compilation/prologFactsForProfiles/com.apple.tccd.pl
+++ /dev/null
@@ -1,38 +0,0 @@
-
-
-profileDefault(profile("com.apple.tccd"),decision("deny")).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class-regex("^com[.]apple[.]tcc[.]"/i)])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-readSTAR"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-read-data"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-read-xattr"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/com.apple.tccd/")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/TCC/")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/tmp/[.]webdavUDS[.][^/]+$"/i)])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("signal"),filters([])).
-profileRule(profile("com.apple.tccd"),decision("allow"),operation("sysctl-read"),filters([])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.tzlinkd.pl b/profile_compilation/prologFactsForProfiles/com.apple.tzlinkd.pl
deleted file mode 100644
index 091caf3..0000000
--- a/profile_compilation/prologFactsForProfiles/com.apple.tzlinkd.pl
+++ /dev/null
@@ -1,119 +0,0 @@
-
-
-profileDefault(profile("com.apple.tzlinkd"),decision("deny")).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone/localtime")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone/localtime")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("com.apple.tzlinkd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.ubd.pl b/profile_compilation/prologFactsForProfiles/com.apple.ubd.pl
deleted file mode 100644
index bcfc7e4..0000000
--- a/profile_compilation/prologFactsForProfiles/com.apple.ubd.pl
+++ /dev/null
@@ -1,208 +0,0 @@
-
-
-profileDefault(profile("com.apple.ubd"),decision("deny")).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension-class("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ubd.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd/"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]ubd"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]ubd"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Application Support")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Ubiquity/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/processed-Mobile Documents[.]delete"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Mobile Documents"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Collections"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity[.]log"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity.+[.]log"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/awd/awd-ubd[.]log"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-read-data"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]ubd"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]ubd"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd/"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]ubd$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]ubd[.]plist"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mmcs[.]plist"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Ubiquity/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/processed-Mobile Documents[.]delete"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Mobile Documents"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Collections"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity[.]log"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/ubiquity.+[.]log"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/awd/awd-ubd[.]log"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/awd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/Ubiquity.framework/Versions/A/Support/ubd")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("sysctlSTAR"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("sysctl-write"),filters([])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",30)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",24)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-info"),filters([info-type("hw.uuid")])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("com.apple.ubd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/com.apple.xpcd.pl b/profile_compilation/prologFactsForProfiles/com.apple.xpcd.pl
deleted file mode 100644
index f451eda..0000000
--- a/profile_compilation/prologFactsForProfiles/com.apple.xpcd.pl
+++ /dev/null
@@ -1,130 +0,0 @@
-
-
-profileDefault(profile("com.apple.xpcd"),decision("deny")).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Audio/Plug-Ins/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/db/.debug_xpcd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/hosts")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/services")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/protocols")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/passwd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/group")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Applications/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("signal"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("com.apple.xpcd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/container.pl b/profile_compilation/prologFactsForProfiles/container.pl
deleted file mode 100644
index bdf98b9..0000000
--- a/profile_compilation/prologFactsForProfiles/container.pl
+++ /dev/null
@@ -1,1083 +0,0 @@
-
-
-profileDefault(profile("container"),decision("deny")).
-profileRule(profile("container"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("container"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("container"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AdLib.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.LaunchServices.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAddressBook.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSMS.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncState.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Search.framework.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VoiceMemos.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.adtracking.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.apsd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.atc.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.celestial.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.certui.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.compass.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.dataaccessd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.facetime.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamed.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamekit.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imagent.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imdsmsrecordstore.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imessage.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iqagent.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itdbprep.server.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.madrid.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.managedconfiguration.janitor.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.messagesbadgecontroller.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mmcs.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mms_override.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobile.SyncMigrator.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.alarmengine.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilecal.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileme.fmf.assistant.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilenotes.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilestoresettings.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobiletimer.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilevpn.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.network.eapclient.tls.TrustExceptions.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.nike.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection-mcc.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.datetime.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.network.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences-sounds.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.softwareupdateservicesd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.twitterd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ubd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voicemail.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/itdbprepserver.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/mediaremote.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.Flytrap")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.BugReporter")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/[-0-9A-Z]+/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/[-0-9A-Z]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.weather.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.appletv.WhatsNew")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.frontrow.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.appletv.WhatsNew")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.restrictionspassword.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsettings.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mail.composition.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilemail.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MailAccount-ExtProperties.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncAgent.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.OTASyncState.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.youtube.dp.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.books.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.books.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.books.plist"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppStore.plist"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileStore.plist"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist"),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist"),require-entitlement("platform-application",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/"),require-entitlement("platform-application",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist"),require-entitlement("platform-application",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist"),require-entitlement("platform-application",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.camera.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Ringtones/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/GameKit/Data/[^/]+[.]gcdata$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mail/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/DataAccess/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.AutoWake.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Application Support/Mail/Plugins/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-readSTAR"),filters([require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/GameKit/Data")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Applications")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData/Thumbnails")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.appletv.WhatsNew")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("container"),decision("allow"),operation("file-read-metadata"),filters([require-entitlement("platform-application",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]weather[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.weather")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]restrictionspassword[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mail[.]composition[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobilemail[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailAccount-ExtProperties[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncState[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtube[.]dp[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/[-0-9A-Z]+/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/DataAccess/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mail/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Calendar/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Notes/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/Snapshots/com.apple.internal.Flytrap/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/PhotoData/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/wireless/Library/CallHistory/call_history.db")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.internal.Flytrap/")])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.Flytrap")])])).
-profileRule(profile("container"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.BugReporter")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/sharedCaches"),vnode-type(directory),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory)])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/com.apple.iTunesStore")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory)])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd")])).
-profileRule(profile("container"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDLibUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([require-not(iokit-property-regex("die-id$"/i)),require-not(iokit-property-regex("chip-id$"/i)),require-not(iokit-property-regex("board-id$"/i)),require-not(iokit-property-regex(".+((die|chip)|board)-id$"/i)),require-not(iokit-property-regex("[Cc]alibration"/i)),require-not(iokit-property-regex(".+[Cc]alibration"/i)),require-not(iokit-property-regex("-mac-address"/i)),require-not(iokit-property-regex("mac-address-"/i)),require-not(iokit-property-regex(".+-mac-address"/i)),require-not(iokit-property-regex(".+mac-address-"/i)),require-not(iokit-property-regex("^AppleDiagnostic"/i))])).
-profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("gyro-interrupt-calibration")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property-regex("^BackCamera"/i)])).
-profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("compass-calibration")])).
-profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("fairplay-client",[])])).
-profileRule(profile("container"),decision("allow"),operation("iokit-get-properties"),filters([require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-sem"),filters([semaphore-owner(self)])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-sem"),filters([extension("com.apple.sandbox.application-group")])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([extension("com.apple.sandbox.application-group")])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([ipc-posix-name-regex("^/mono[.][0-9]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("container"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.geod")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.public")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.notifications.public")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.sandbox.application-group")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.weibod.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("PurplePPTServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPad.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPhone.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaControl.daemon")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileAccessoryUpdater")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileFileIntegrity")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerControllerInternal")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServerExists")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ProgressReporting")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.DirectoryService")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.Jetsam")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SafetyNet")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.StackShot")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accessmanager")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.authmanager")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.oauthsigner")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplay.sender.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ait.client")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appleprofilepolicyd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.keepDaemonAlive")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.messagingServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.notificationServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioConverterServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioFileServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioUnitServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.SystemSounds")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.checkin")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.watchdog")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.workspaceserverconnection")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bypassBasebandAutoBooter.msgport")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.certui.relay")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.clouddbd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.dm-helper")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.mobile-helper")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audioprocessingtap")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpe")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpeprotector")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreader")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.mutablecomposition")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videoqueue")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplay")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplayserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsCompAgent_armv7")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd.active")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.datamigrator.dz")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@0v3")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamecenter")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed.note")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.distributednotification.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.distributednotification.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imavagent.embedded.auth")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.instruments.server.mig")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itdbprep.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lskdd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponder")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponderHelper")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-dev")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-prod")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdservice")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing-nowake")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver.io")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.notification_proxy")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.softwareupdated")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerControllerInternal")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServer")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServerExists")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networking.captivenetworksupport")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.library")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.prdaily")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sandboxd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.scrod")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securekeyvaultd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.xpc")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sociald.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.UIKit.migserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.alerts")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.blockableservices")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.icongeneration")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.remotenotifications")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.watchdogserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.syncdefaultsd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sysmond")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.remotelogdaemon")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.twitterd.server")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.unfreed")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.avconference")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.camera")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vsassetd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wapi.client")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilesafari-settings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebSheet")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilestoredemod"),require-entitlement("com.apple.private.mobilestoredemo.enabledemo",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController-priv"),require-entitlement("com.apple.networking.vpn.configuration",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aps.alertprovider.xpc"),require-entitlement("platform-application",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd.xpc"),require-entitlement("platform-application",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled"),require-entitlement("com.apple.managedconfiguration.profiled-access",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd"),require-entitlement("abs-client",[entitlement-value-regex(".+"/i)])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icfcallserver"),require-entitlement("com.apple.private.icfcallserver",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver"),require-entitlement("com.apple.accessibility.api",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.observerconnection"),require-entitlement("com.apple.bulletinboard.observer",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.settingsconnection"),require-entitlement("com.apple.bulletinboard.settings",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.systemstateconnection"),require-entitlement("com.apple.bulletinboard.systemstate",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.utilitiesconnection"),require-entitlement("com.apple.bulletinboard.utilities",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AOSNotification"),require-entitlement("com.apple.aosnotification.aosnotifyd-access",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.biometrickitd"),require-entitlement("com.apple.private.bmk.allow",[])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("absinthe-client",[entitlement-value-regex(".+"/i)])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CrashCopy.OTA")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.OTATaskingAgent")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.crash_mover")])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.Flytrap")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-lookup"),filters([require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.internal.BugReporter")])])).
-profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("container"),decision("allow"),operation("mach-register"),filters([extension("com.apple.sandbox.application-group")])).
-profileRule(profile("container"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
-profileRule(profile("container"),decision("allow"),operation("network-outbound"),filters([require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:23")))])).
-profileRule(profile("container"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:62078")))])).
-profileRule(profile("container"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("container"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("container"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("container"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("container"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("container"),decision("allow"),operation("process-info-pidinfo"),filters([target(self)])).
-profileRule(profile("container"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("container"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("container"),decision("allow"),operation("signal"),filters([target(others),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("container"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("container"),decision("allow"),operation("system-info"),filters([require-entitlement("fairplay-client",[]),info-type("net.link.addr"),require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])).
-profileRule(profile("container"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("container"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("container"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/containerBetterGraphProcess.pl b/profile_compilation/prologFactsForProfiles/containerBetterGraphProcess.pl
deleted file mode 100644
index 9ceb4dc..0000000
--- a/profile_compilation/prologFactsForProfiles/containerBetterGraphProcess.pl
+++ /dev/null
@@ -1,1523 +0,0 @@
-
-
-profileDefault(profile("containerBetterGraphProcess"),decision("deny")).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-ioctl"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-ioctl"),filters([literal("/dev/ptmx")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-ioctl"),filters([literal("/dev/aes_0")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-only"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-only"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-write"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/"),extension("com.apple.avasset.read-only"),extension-class("com.apple.mediaserverd.read"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container"),extension-class("com.apple.mediaserverd.read")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/Caches/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/Caches$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.executable")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.executable")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/iTunesArtwork$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.absolute-path.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.security.exception.files.home-relative-path.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.executable")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),subpath("/System/Library/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/System/Library/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension("com.apple.sandbox.executable"),extension-class("com.apple.nsurlsessiond.readonly")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlstorage.extension-cache"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-only"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-only"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-write"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Library/Mail/"),extension-class("com.apple.mediaserverd.read"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),subpath("/private/var/mobile/Library/ReplayKit/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ReplayKit.RPVideoEditorExtension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.nsurlsessiond.readonly"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.sharing.airdrop.readonly"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/OnDemandResources/AssetPacks/"),extension("com.apple.odr-assets")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),subpath("/private/var/mobile/Library/OnDemandResources/AssetPacks/"),extension("com.apple.odr-assets")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read-write"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.absolute-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.mediaserverd.read"),extension("com.apple.security.exception.files.home-relative-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read"),extension-class("com.apple.mediaserverd.read")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container"),extension-class("com.apple.mediaserverd.read")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read-write"),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-issue-extension"),filters([extension-class("com.apple.app-sandbox.read"),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-map-executable"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.absolute-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.home-relative-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.absolute-path.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.security.exception.files.home-relative-path.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.executable")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Managed Preferences/mobile/.GlobalPreferences.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.security.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/DCIM/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/System/Library/PairedSyncServices/com.apple.pairedsync.mail.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.AutoWake.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/DataAccess/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Application Support/Mail/Plugins/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]NanoMail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SMS/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Containers/Bundle/[^/]+/[-0-9A-Z]+/GeoJSON"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]restrictionspassword[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]stocks[.]bridge$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/AppleInternal/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/Applications/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Media/iTunes_Control/Artwork/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Media/iTunes_Control/iTunes/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),subpath("/private/var/mobile/Library/AddressBook/"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/GameKit/Data/[^/]+[.]gcdata$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/[.]GlobalPreferences$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),extension("com.apple.app-sandbox.read")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/com.apple.xpc.launchd.bootstrap.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/Vibrations/UserGeneratedVibrationPatterns.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Ringtones/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]ToneLibrary$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/GeoServices$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/GeoServices/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/Library/Dictionaries/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.security.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/OnDemandResources/AssetPacks/"),extension("com.apple.odr-assets")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Library/Application Support/CloudDocs/session/r/"),vnode-type(regular-file),extension("com.apple.clouddocs.version")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/.DocumentRevisions-V100/PerUID/"),extension("com.apple.revisiond.revision")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/"),extension("com.apple.avasset.read-only"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),subpath("/private/var/mobile/Media/PhotoData/Metadata/"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite-wal$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite-shm$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),regex("^/private/var/mobile/Media/PhotoData/Photos[.]sqlite-journal$"/i),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/protocols")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/services")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/hosts")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/group")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/etc/passwd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-wal"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-shm"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-journal"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([require-not(literal("/private/var/mobile/Library/Preferences/com.apple.apsalerts.plist")),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/"),require-entitlement("com.apple.security.exception.carrier-bundle.read",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/CloudDocs/session/r/"),vnode-type(regular-file),extension("com.apple.clouddocs.version")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/.DocumentRevisions-V100/PerUID/"),extension("com.apple.revisiond.revision")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/StoreKit$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/iTunesArtwork$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/Managed Preferences/mobile/com[.]apple[.].+[.]plist$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackgroundThumbnail[.]jpg$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]LockBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/SpringBoard/[.]HomeBackground[.]cpbitmap"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Mobile Documents")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/DeviceRegistry")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/GameKit/Data")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/PPTDevice")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/DeviceRegistry")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData/Thumbnails"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media/PhotoData"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.security.exception.files.absolute-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.security.exception.files.home-relative-path.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/Ringtones.plist"),require-entitlement("com.apple.media.ringtones.read-write",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/iTunes/"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.iTunesStore.NSURLCache/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Media/Books/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioRequestURLCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Caches/sharedCaches/com.apple.Radio.RadioImageCache/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]itunesstored[.]plist"/i),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-wal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-shm"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb-journal"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/WebClips/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webapp")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtube[.]dp[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Cookies/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Safari/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Notes/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]mobilemail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMail/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/PairedSyncServiceRestrictions/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/Mail/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]accountsettings[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mail[.]composition[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MailAccount-ExtProperties[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncAgent[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]OTASyncState[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoPreferencesSync/NanoDomains/com[.]apple[.]NanoMail"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+/NanoMaps/"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GMM[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]NanoMailKit[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]skyhookwireless[.]wps[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistant[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]internal[.]Voltaire[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/SMS/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Containers/Bundle/[^/]+/[-0-9A-Z]+/GeoJSON"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb-journal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]restrictionspassword[.]plist"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/"),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]EmojiPreferences[.]plist"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),require-entitlement("com.apple.private.librarian.container-proxy",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/.DocumentRevisions-V100/staging/"),extension("com.apple.revisiond.staging")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-writeSTAR"),filters([require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/GeoServices/tguid.bin")),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(vnode-type(block-device)),require-not(vnode-type(character-device)),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db-journal"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([vnode-type(directory),literal("/private/var/mobile/Library/DeviceRegistry")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([vnode-type(directory),regex("^/private/var/mobile/Library/DeviceRegistry/[-0-9A-Z]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilenotes")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.storeservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/sharedCaches"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-create"),filters([require-not(regex("^/private/var/mobile/Library/Logs/CrashReporter/CFNetwork_"/i)),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.iTunesStore/LocalStorage"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/dev/ptmx")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/dev/aes_0")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Media/iTunes_Control/iTunes/MediaLibrary.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Cookies/com.apple.itunesstored.2.sqlitedb"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([literal("/private/var/mobile/Library/Caches/com.apple.storeservices/AppPurchaseHistory.6.sqlitedb"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.ios.StoreKitUIService")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/dev/dtracehelper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/dev/null")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/dev/zero")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-data"),filters([require-not(literal("/dev/random")),require-not(literal("/dev/urandom")),literal("/private/var/mobile/Library/CoreDuet/People/interactionC.db"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-mode"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-mode"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/Inbox/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/Inbox$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Purchases/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([subpath("/private/var/mobile/Media/Podcasts/"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("file-write-unlink"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.launchd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSubmitter2")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceAcceleratorClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([extension("com.apple.security.exception.iokit-user-client-class")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDLibUserClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("compass-calibration")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property("gyro-interrupt-calibration")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([iokit-property-regex("^BackCamera"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-not(iokit-property-regex("-mac-address"/i)),require-not(iokit-property-regex("mac-address-"/i)),require-not(iokit-property-regex(".+-mac-address"/i)),require-not(iokit-property-regex(".+mac-address-"/i))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("com.apple.wifi.manager-access",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("fairplay-client",[require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("iokit-get-properties"),filters([require-entitlement("com.apple.system.get-hardware-identifiers",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-sem"),filters([semaphore-owner(self)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-sem"),filters([extension("com.apple.sandbox.application-group")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([extension("com.apple.sandbox.application-group")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^apple[.]shm[.]cfprefsd[.]"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([ipc-posix-name-regex("^/mono[.][0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.]."/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i),require-entitlement("inter-app-audio",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.quicklook.ThumbnailsAgent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesession")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesource")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pegasus")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileProvider")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bird")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bird.token")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.revisiond")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pairedsyncd.syncstate")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nano.nanoregistry.paireddeviceregistry")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.trustd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nesessionmanager")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nehelper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.GSSCred")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cookied")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsurlstorage-cache")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsurlsessiond")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("PurplePPTServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemEventPort")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPad.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AdSheetPhone.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CoreAuthentication.daemon")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.GameController.gamecontrollerd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaControl.daemon")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileAccessoryUpdater")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileFileIntegrity")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerControllerInternal")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Music.MPMusicPlayerMigServerExists")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ProgressReporting")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.DirectoryService")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.Jetsam")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SafetyNet")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.StackShot")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.VoiceOverTouch.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accessmanager")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.authmanager")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.oauthsigner")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplay.sender.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ait.client")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appleprofilepolicyd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.extension")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.keepDaemonAlive")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.messagingServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.notificationServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioConverterServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioFileServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioUnitServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.checkin")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.watchdog")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.workspaceserverconnection")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bypassBasebandAutoBooter.msgport")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.certui.relay")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cloudd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.clouddbd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.dm-helper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.mobile-helper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audioprocessingtap")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.compressionsession")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpe")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.cpeprotector")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.decompressionsession")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.formatreader")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.mutablecomposition")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videoqueue")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplay")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.wirelessdisplayserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.corerecents.recentsd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.appleid.authentication")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsCompAgent_armv7")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dataaccess.dataaccessd.active")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.datamigrator.dz")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@0v3")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamecenter")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamed.note")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gizmoappd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.healthd.restriction")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.healthd.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.homed.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.notifications.public")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.public")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.distributednotification.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapauthd.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.distributednotification.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iaptransportd.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imavagent.embedded.auth")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.instruments.server.mig")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itdbprep.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponder")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponderHelper")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-dev")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdpush-prod")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.mdmdservice")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediastream.sharing-nowake")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.midiserver.io")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.softwareupdated")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerControllerInternal")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileipod.MPMusicPlayerMigServerExists")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networking.captivenetworksupport")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.notificationcenter.widgetcontrollerconnection")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.in-app-payment")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.assertions")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.passd.library")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.prdaily")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sandboxd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.scrod")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.le.att.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth.le.pipe.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.UIKit.migserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.alerts")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.blockableservices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.icongeneration")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.remotenotifications")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.watchdogserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.syncdefaultsd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.callservicesdaemon.voip")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.remotelogdaemon")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.testmanagerd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.twitterd.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vibrationmanagerd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.avconference")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.videoconference.camera")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.vsassetd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wapi.client")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wcd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.weibod.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.watchconnectivity.complication")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.spotlight.IndexAgent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.telephonyutilities.callservicesdaemon.callcapabilities")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.sandbox.application-group")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.geod")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanomaps.xpc.GeoServices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd.nsxpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usernotification.notificationregistrar")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usernotification.notificationscheduler")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.uikit.GestureServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.applicationstateconnection")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.expiration")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.SystemSoundServer-iOS")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.TouchDeliveryPolicyServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.animation-fence-arbiter")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.frontboard.workspace")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.frontboard.systemappservices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanoprefsync")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pluginkit.pkd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ondemandd.client")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([local-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.keepalive")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.lexicon-server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.shortcuts")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.KeyboardManagement")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.KeyboardManagement.hosted")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]uikit[.]viewservice[.].+"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.NPKCompanionAgent.library")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaremoted.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ctkd.token-client")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CoreAuthentication.daemon.libxpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.diagnosticd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assertiond.processassertionconnection")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.advertisingidentifiers")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.openurl")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreservices.lsuseractivitymanager.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.icons")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.mapdb")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.open")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.duetknowledged.activity")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfprefsd.daemon")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfprefsd.agent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.cfprefsd.agent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.local-name"),local-name-regex("."/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.local-name"),local-name-regex(".+"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.global-name"),global-name-regex("."/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([extension("com.apple.security.exception.mach-lookup.global-name"),global-name-regex(".+"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("com.apple.authkit.client",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("com.apple.authkit.client.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.auth.xpc"),require-entitlement("com.apple.authkit.client.internal",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("com.apple.authkit.client",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("com.apple.authkit.client.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ak.anisette.xpc"),require-entitlement("com.apple.authkit.client.internal",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd_privileged"),require-entitlement("com.apple.networkd_privileged",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.replayd"),require-not(privilege-id(0))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.biometrickitd"),require-entitlement("com.apple.private.bmk.allow",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.utilitiesconnection"),require-entitlement("com.apple.bulletinboard.utilities",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.systemstateconnection"),require-entitlement("com.apple.bulletinboard.systemstate",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.settingsconnection"),require-entitlement("com.apple.bulletinboard.settings",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.observerconnection"),require-entitlement("com.apple.bulletinboard.observer",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver"),require-entitlement("com.apple.accessibility.api",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icfcallserver"),require-entitlement("com.apple.private.icfcallserver",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.adid"),require-entitlement("adi-client",[entitlement-value-regex(".*"/i)])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd"),require-entitlement("abs-client",[entitlement-value-regex(".*"/i)])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absinthed"),require-entitlement("absinthe-client",[entitlement-value-regex(".*"/i)])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.absd"),require-entitlement("absinthe-client",[entitlement-value-regex(".*"/i)])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled"),require-entitlement("com.apple.managedconfiguration.profiled-access",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.unfreed"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lskdd"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aps.alertprovider.xpc"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController-priv"),require-entitlement("com.apple.networking.vpn.configuration",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.siri.vocabularyupdates"),require-entitlement("com.apple.siri.synapse",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.familycircle.agent"),require-entitlement("com.apple.private.familycircle",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icloud.findmydeviced"),require-entitlement("com.apple.aosnotification.aosnotifyd-access",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.icloud.findmydeviced"),require-entitlement("com.apple.icloud.findmydeviced.access",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AOSNotification"),require-entitlement("com.apple.aosnotification.aosnotifyd-access",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilestoredemod"),require-entitlement("com.apple.private.mobilestoredemo.enabledemo",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.parsec.subscriptionservice.internal"),require-entitlement("com.apple.private.subscriptionservice.internal",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.parsec.subscriptionservice"),require-entitlement("com.apple.smoot.subscriptionservice",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.suggestionmanager"),require-entitlement("com.apple.private.suggestions",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.spotlight"),require-entitlement("com.apple.private.suggestions",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.mail"),require-entitlement("com.apple.private.suggestions",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.events"),require-entitlement("com.apple.private.suggestions",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.suggestd.contacts"),require-entitlement("com.apple.private.suggestions",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.spotlight.SearchAgent"),require-entitlement("com.apple.spotlight.search",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cache_delete"),require-entitlement("com.apple.mobile.deleted.AllowFreeSpace",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cache_delete"),require-entitlement("com.apple.private.CacheDelete",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd.people"),require-entitlement("com.apple.coreduetd.allow",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd"),require-entitlement("com.apple.coreduetd.allow",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.medialibraryd.xpc"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilesafari-settings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebSheet")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.rtcreportingd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.routined.registration"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pegasus"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesource"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesession"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.harvestd.manager"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backupd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanoprefsync"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.embedded.auth"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletindistributord.server"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.routined.registration"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Maps.SpringBoard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.Maps.mapspushd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanomaps.xpc.Maps"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.keybagd.xpc"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.WebContentFilter.remoteUI.WebContentAnalysisUI")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nanoprefsync"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.statusbarservices"),require-entitlement("com.apple.springboard.statusbarstyleoverrides",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pegasus"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint.xpc"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesource"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.capturesession"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bulletinboard.dataproviderconnection"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coreduetd.people"),require-entitlement("com.apple.coreduetd.people",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),extension("com.apple.sandbox.application-group")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),local-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),local-name("com.apple.iphone.axserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),local-name("com.apple.accessibility.gax.client")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),global-name("com.apple.Music.MPMusicPlayerMigServerExists"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("mach-register"),filters([require-not(global-name-regex("-idswake$"/i)),require-not(global-name-regex(".+-idswake$"/i)),global-name("com.apple.Music.MPMusicPlayerControllerInternal"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Music")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([local(ip("*:*"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-inbound"),filters([extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Containers/Data/[^/]+/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),literal("/private/var/run/lockdown.sock"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/printd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/syslog")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.network.statistics")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),control-name("com.apple.netsrc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),remote(ip("*:*"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("network-outbound"),filters([require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)),require-not(remote(tcp("localhost:22"))),require-not(remote(tcp("localhost:23"))),require-not(remote(tcp("localhost:873"))),require-not(remote(tcp("localhost:62078"))),extension("com.apple.sandbox.application-group"),regex("^/private/var/mobile/Containers/Shared/AppGroup/[-0-9A-Z]+/"/i)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvramSTAR"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvram-delete"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvram-get"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("nvram-set"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.avfoundation")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreaudio")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coremedia")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.corevideo")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.NanoRegistry")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.demo-settings")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.logging")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([extension("com.apple.security.exception.shared-preference.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([extension("com.apple.security.exception.shared-preference.read-only")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("kCFPreferencesAnyApplication")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AOSNotification.public.notbackedup")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.Accessibility")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AdLib")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.ConfigServer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.GEO")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.GMM")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.InputModePreferences")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.LaunchServices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MapKit.internal")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MobileAddressBook")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.OTASyncState")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.PeoplePicker")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.Preferences")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.UIKit")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.VoiceMemos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.XCTest")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.adtracking")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.aggregated")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.appleaccount")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.apsd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.assistant.backedup")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.assistant.support")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.atc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.camera")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.celestial")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.certui")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.compass")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.dataaccess.dataaccessd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.gamed")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.gamekit")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.imagent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.imdsmsrecordstore")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.imessage")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.iqagent")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itdbprep.server")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.keyboard")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.madrid")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.managedconfiguration.janitor")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.messagesbadgecontroller")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mmcs")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mms_override")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobile.SyncMigrator")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilecal.alarmengine")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilecal")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileme.fmf.assistant")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilenotes")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileslideshow")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilestoresettings")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobiletimer")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobilevpn")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.network.eapclient.tls.TrustExceptions")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nike")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.persistentconnection-mcc")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.persistentconnection")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences.datetime")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences.network")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences.sounds")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.preferences-sounds")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.softwareupdateservicesd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.twitterd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.ubd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.videos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.voicemail")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.youtubeframework")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("itdbprepserver")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("mediaremote")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AppSupport")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.locationd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.DataMigration")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.icloud.findmydeviced.postwipe")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.icloud.findmydeviced.public.notbackedup")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.iokit.IOMobileGraphicsFamily")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mediaaccessibility")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain(".GlobalPreferences")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebUI")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreanimation")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mt")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.telephonyutilities.dialassist")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.CoreMotion")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.Sharing")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.EmojiPreferences")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.iapd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nanoprefsyncd")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MobileAsset")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mediaaccessibility.public")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.SpeakSelection")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.VoiceOverTouch")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.voiceservices")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.da")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mediaremote")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.demo-settings"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.DataAccess.BehaviorOptions"),require-entitlement("platform-application",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.media.ringtones.read-only",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.system.get-wallpaper",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.AppStore"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MobileStore"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.books"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.books"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.books"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.homesharing"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.medialibrary"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.youtube.dp"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.safarifetcherd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.WebFoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Safari.SocialHelper")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.avfoundation"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreaudio"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coremedia"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.corevideo"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.accountsettings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mail.composition"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.MailAccount-ExtProperties"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.OTASyncAgent"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.OTASyncState"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nanoprefsyncd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.GMM"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.NanoMailKit"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.skyhookwireless.wps"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.assistant"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.internal.Voltaire"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.weather"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.nanoprefsyncd"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.stocks.watchkitextension")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.itunesstored"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.mobileipod"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.avfoundation"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coreaudio"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.coremedia"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.corevideo"),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-read"),filters([preference-domain("com.apple.bulletinboard"),require-entitlement("com.apple.bulletinboard.dataprovider",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.PeoplePicker")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.Preferences")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.EmojiPreferences")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mediaaccessibility.public")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([extension("com.apple.security.exception.shared-preference.read-write")])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.GMM"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.NanoMailKit"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.skyhookwireless.wps"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.assistant"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.internal.Voltaire"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.springboard"),require-entitlement("com.apple.system.set-alert-tone",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mobileipod"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.iBooks")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.itunesu")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.itunesstored"),require-entitlement("com.apple.container2",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.youtube.dp"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilesafari")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.accountsettings"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.mail.composition"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.MailAccount-ExtProperties"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.OTASyncAgent"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("user-preference-write"),filters([preference-domain("com.apple.OTASyncState"),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.mobilemail")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidinfo"),filters([target(self)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidinfo"),filters([require-entitlement("com.apple.security.exception.process-info",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidinfo"),filters([target(others),require-entitlement("com.apple.DiagnosticExtensions.extension",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidfdinfo"),filters([target(self)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-pidfdinfo"),filters([require-entitlement("com.apple.security.exception.process-info",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("process-info-setcontrol"),filters([target(self)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("signal"),filters([target(others),require-entitlement("com.apple.DiagnosticExtensions.extension",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("signal"),filters([target(others),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.webbookmarksd")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("sysctl-read"),filters([sysctl-name-regex("^kern[.]proc[.]"/i),require-entitlement("com.apple.security.exception.process-info",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("sysctl-read"),filters([require-not(sysctl-name("kern.proc.pid.1")),require-not(sysctl-name-regex("^kern[.]proc[.]"/i))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("sysctl-read"),filters([require-not(sysctl-name("kern.proc.pid.1")),require-entitlement("com.apple.DiagnosticExtensions.extension",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",32)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-fsctl"),filters([fsctl-command("_io","h",31)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr"),require-entitlement("fairplay-client",[]),require-not(require-entitlement("com.apple.private.MobileGestalt.AllowedProtectedKeys"))])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-privilege"),filters([])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-socket"),filters([socket-domain(39),require-entitlement("com.apple.private.signing-identifier",[entitlement-value("com.apple.Maps")])])).
-profileRule(profile("containerBetterGraphProcess"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/containerManualPruning.pl b/profile_compilation/prologFactsForProfiles/containerManualPruning.pl
deleted file mode 100644
index e69de29..0000000
diff --git a/profile_compilation/prologFactsForProfiles/coresymbolicationd.pl b/profile_compilation/prologFactsForProfiles/coresymbolicationd.pl
deleted file mode 100644
index 5666ac9..0000000
--- a/profile_compilation/prologFactsForProfiles/coresymbolicationd.pl
+++ /dev/null
@@ -1,112 +0,0 @@
-
-
-profileDefault(profile("coresymbolicationd"),decision("deny")).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/System/Library/Caches/com.apple.coresymbolicationd/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Caches/com.apple.coresymbolicationd/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("coresymbolicationd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/cplogd.pl b/profile_compilation/prologFactsForProfiles/cplogd.pl
deleted file mode 100644
index aead2f6..0000000
--- a/profile_compilation/prologFactsForProfiles/cplogd.pl
+++ /dev/null
@@ -1,112 +0,0 @@
-
-
-profileDefault(profile("cplogd"),decision("deny")).
-profileRule(profile("cplogd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("cplogd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("cplogd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("cplogd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("cplogd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("cplogd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("cplogd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("cplogd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("cplogd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("cplogd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("cplogd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/dataaccessd.pl b/profile_compilation/prologFactsForProfiles/dataaccessd.pl
deleted file mode 100644
index f2a40f3..0000000
--- a/profile_compilation/prologFactsForProfiles/dataaccessd.pl
+++ /dev/null
@@ -1,229 +0,0 @@
-
-
-profileDefault(profile("dataaccessd"),decision("deny")).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Logs")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/DataAccess/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/Message/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/ManagedConfiguration/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/DataAccess/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mail/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.dataaccess.dataaccessd/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/DataAccess/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.mobilesafari/ReadingListArchives/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.]binarycookies"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.].+binarycookies"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.notes.autoincrement.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db-journal")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db-shm")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/Bookmarks.db-wal")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Safari/com.apple.Bookmarks.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/Frameworks/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/DataAccess/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/Message/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/ManagedConfiguration/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/DataAccess/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mail/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Notes/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Calendar/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.dataaccess.dataaccessd/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/DataAccess/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.sharedstore.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.]binarycookies"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/com[.]apple[.]dataaccessd[.].+binarycookies"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.objectcreation.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.notes.autoincrement.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db-journal")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db-shm")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db-wal")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/com.apple.Bookmarks.lock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Safari")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Safari/Bookmarks.db")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.mobilesafari/ReadingListArchives/")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("signal"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("system-sched"),filters([])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("dataaccessd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/debugserver.pl b/profile_compilation/prologFactsForProfiles/debugserver.pl
deleted file mode 100644
index 4f2a3e0..0000000
--- a/profile_compilation/prologFactsForProfiles/debugserver.pl
+++ /dev/null
@@ -1,132 +0,0 @@
-
-
-profileDefault(profile("debugserver"),decision("deny")).
-profileRule(profile("debugserver"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Applications")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[.]app/"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[.]app$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app/"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[^/]+[.]app/"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//[^/]+[.]app$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/private/var/mobile/"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("debugserver"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("debugserver"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("debugserver"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("mach-priv-task-port"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("localhost:*"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),remote(tcp("localhost:*"))])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([regex("^/private/var/run/lockdown/checkin"/i)])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("debugserver"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("debugserver"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Applications//[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications//[.]app$"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[.]app$"/i)),require-not(regex("^/private/var/mobile/Applications//[^/]+[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications//[^/]+[.]app$"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)),require-not(regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i))])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-fork"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("signal"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("debugserver"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("debugserver"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("debugserver"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/ftp-proxy-embedded.pl b/profile_compilation/prologFactsForProfiles/ftp-proxy-embedded.pl
deleted file mode 100644
index 7197db2..0000000
--- a/profile_compilation/prologFactsForProfiles/ftp-proxy-embedded.pl
+++ /dev/null
@@ -1,141 +0,0 @@
-
-
-profileDefault(profile("ftp-proxy-embedded"),decision("deny")).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MobileInternetSharing")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.pfd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([local(ip("*:*"))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("ftp-proxy-embedded"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/gamed.pl b/profile_compilation/prologFactsForProfiles/gamed.pl
deleted file mode 100644
index f4677d8..0000000
--- a/profile_compilation/prologFactsForProfiles/gamed.pl
+++ /dev/null
@@ -1,240 +0,0 @@
-
-
-profileDefault(profile("gamed"),decision("deny")).
-profileRule(profile("gamed"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]gamed"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]gamed"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.conference.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamed.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.gamecenter.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VideoConference.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/gamed")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Applications/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/GameKit/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/GameKit/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.gamed/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/GameKit/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/gamed"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/awd/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]gamed"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]gamed"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/GameKit/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]conference[.]plist"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]gamed[.]plist"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]gamecenter[.]plist"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]logging[.]plist"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/GameKit/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.gamed/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/GameKit/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/gamed"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/awd/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("gamed"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("gamed"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("gamed"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("gamed"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gamecenter")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.helper")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilemail.services.xpc")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("gamed"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:*"))])).
-profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([remote(ip("*:*"))])).
-profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("gamed"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("gamed"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/usr/libexec/gamed")])).
-profileRule(profile("gamed"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("gamed"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("gamed"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("gamed"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("gamed"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("gamed"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/geod.pl b/profile_compilation/prologFactsForProfiles/geod.pl
deleted file mode 100644
index c7261cb..0000000
--- a/profile_compilation/prologFactsForProfiles/geod.pl
+++ /dev/null
@@ -1,169 +0,0 @@
-
-
-profileDefault(profile("geod"),decision("deny")).
-profileRule(profile("geod"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("geod"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("geod"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("geod"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("geod"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("geod"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Maps/MapTiles")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb-journal")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/MapTiles")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb-journal")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GMM.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.GeoServices")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.GeoServices/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("geod"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb-journal")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb-journal")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/GeoServices/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/[.]GlobalPreferences[.]plist"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GEO[.]plist"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]GMM[.]plist"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.GeoServices/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("geod"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/Maps/MapTiles/MapTiles.sqlitedb")])).
-profileRule(profile("geod"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/MapTiles/MapTiles.sqlitedb")])).
-profileRule(profile("geod"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("geod"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("geod"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("geod"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("geod"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("geod"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("geod"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gmmd.cookie")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("geod"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([remote(ip("*:*"))])).
-profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("geod"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("geod"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("geod"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("geod"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("geod"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("geod"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/gputoolsd.pl b/profile_compilation/prologFactsForProfiles/gputoolsd.pl
deleted file mode 100644
index 9588113..0000000
--- a/profile_compilation/prologFactsForProfiles/gputoolsd.pl
+++ /dev/null
@@ -1,126 +0,0 @@
-
-
-profileDefault(profile("gputoolsd"),decision("deny")).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/GPUTools/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Caches/com.apple.opengl/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lockdown.host_watcher")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.icongeneration")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.appwatchdog")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("mach-priv-task-port"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/gputoolsdhelper.sock")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([regex("^/private/var/run/lockdown/checkin"/i)])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([local(tcp("localhost:*"))])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Developer/usr/libexec/gputoolsd")])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("signal"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("gputoolsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/iapd.pl b/profile_compilation/prologFactsForProfiles/iapd.pl
deleted file mode 100644
index 66b518f..0000000
--- a/profile_compilation/prologFactsForProfiles/iapd.pl
+++ /dev/null
@@ -1,174 +0,0 @@
-
-
-profileDefault(profile("iapd"),decision("deny")).
-profileRule(profile("iapd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iapd.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iap2d.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.iaptransportd.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/ConfigurationProfiles/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/sbin/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.wifi.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.iap2d/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/iapd"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/iap2d"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/mp"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/haywire"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistivetouchd[.]enabled[.]launchd"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Radio/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/Panics/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/ea")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.iap2d/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/iapd"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/iap2d"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/mp"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/haywire"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]assistivetouchd[.]enabled[.]launchd"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iapd[.]plist"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iap2d[.]plist"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]iaptransportd[.]plist"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileipod[.]plist"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]videos[.]plist"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Radio/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/Panics/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("iapd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("iapd"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("iapd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("iapd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.iap2d.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("iapd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.iaptransportd.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("iapd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.ExternalAccessory.distributednotification.server")])).
-profileRule(profile("iapd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:*"))])).
-profileRule(profile("iapd"),decision("allow"),operation("network-bind"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/ea/ea[.0-9]+$"/i)])).
-profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([remote(udp("*:*"))])).
-profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("iapd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("iapd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/IAP.framework/Support/iapd")])).
-profileRule(profile("iapd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/PrivateFrameworks/IAP.framework/Support/iap2d")])).
-profileRule(profile("iapd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("iapd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("iapd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("iapd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("iapd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/ios-sandbox-profiles.pl b/profile_compilation/prologFactsForProfiles/ios-sandbox-profiles.pl
deleted file mode 100644
index e69de29..0000000
diff --git a/profile_compilation/prologFactsForProfiles/librariand.pl b/profile_compilation/prologFactsForProfiles/librariand.pl
deleted file mode 100644
index e639407..0000000
--- a/profile_compilation/prologFactsForProfiles/librariand.pl
+++ /dev/null
@@ -1,130 +0,0 @@
-
-
-profileDefault(profile("librariand"),decision("deny")).
-profileRule(profile("librariand"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension-class("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.librariand.plist")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Librarian/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand[.]log"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand.+[.]log"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Application Support")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Librarian/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand[.]log"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/librariand.+[.]log"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]appleaccount[.]plist"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]librariand[.]plist"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("librariand"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("librariand"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("librariand"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("librariand"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("librariand"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ubd")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("librariand"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("librariand"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("librariand"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("librariand"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("librariand"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("librariand"),decision("allow"),operation("system-info"),filters([info-type("hw.uuid")])).
-profileRule(profile("librariand"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/lockdownd.pl b/profile_compilation/prologFactsForProfiles/lockdownd.pl
deleted file mode 100644
index 15a0f79..0000000
--- a/profile_compilation/prologFactsForProfiles/lockdownd.pl
+++ /dev/null
@@ -1,209 +0,0 @@
-
-
-profileDefault(profile("lockdownd"),decision("deny")).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/Info[.]plist$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj/"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[.]lproj$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj/"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]bundle/[^/]+[.]lproj$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.purplebuddy.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/Preferences.app/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/lockdownd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Lockdown/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/logs/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/preferences/SystemConfiguration/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/root/Library/Lockdown/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Preferences/com[.]apple[.]mobile[.]lockdownd[.]plist"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/run/lockdown/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.WebAppCache/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Calendar/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Notes/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Voicemail/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Applications/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(directory)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/logs/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Lockdown/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/com[.]apple[.]ipsec[.]plist"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/com[.]apple[.]eapolclient[.]plist"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/preferences/SystemConfiguration/OSThermalStatus[.]plist"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Preferences/com[.]apple[.]mobile[.]lockdownd[.]plist"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/lockdown/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-write-mode"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/timezone")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleNANDFTLUserClient")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleEffaceableStorageUserClient")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("iokit-set-properties"),filters([iokit-property("auto-boot")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.afcd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.syslog_relay")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.notification_proxy")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.assertion_agent")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lockdown.host_watcher")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.crash_mover")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.crashreportcopymobile")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.atc")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.AOSNotification")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.timed.xpc")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installation_proxy")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobile.installd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/lockdown/")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("*:62078"))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockbot")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("lockdownd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("lockdownd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("lockdownd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("lockdownd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("lockdownd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/mDNSResponder.pl b/profile_compilation/prologFactsForProfiles/mDNSResponder.pl
deleted file mode 100644
index 11df815..0000000
--- a/profile_compilation/prologFactsForProfiles/mDNSResponder.pl
+++ /dev/null
@@ -1,120 +0,0 @@
-
-
-profileDefault(profile("mDNSResponder"),decision("deny")).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Managed Preferences/mobile")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Library/Preferences/")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/Library/Managed Preferences")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/Managed Preferences/mobile/com.apple.mDNSResponder.plist")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/C/mds/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/folders/[^/]+/[^/]+/C/mds$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/db/mds/[0-9]+/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/db/mds/[0-9]+$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/tmp/mds/[0-9]+/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/tmp/mds/[0-9]+$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/lib/")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/System/")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/private/var/db/dyld/")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/share/")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([subpath("/private/var/tmp/mds/")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([subpath("/private/var/db/mds/")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([literal("/private/var/db/crls/crlcache.db")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([literal("/Library/Keychains/System.keychain")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/usr/sbin")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/private/var/preferences/SystemConfiguration/preferences.plist")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/SystemConfiguration/com.apple.PowerManagement.plist")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),regex("^/Library/Preferences/com[.]apple[.]security[.]"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Security/Trust Settings/Admin.plist")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/com.apple.crypto.plist")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),regex("^/Library/Preferences/[.]GlobalPreferences[.]"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),regex("^/Library/Preferences/ByHost/[.]GlobalPreferences[.]"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/SystemConfiguration/com.apple.nat.plist")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/Library/Preferences/SystemConfiguration/preferences.plist")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/usr/sbin/mDNSResponder")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/dev/console")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/private/etc/hosts")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-data"),filters([require-not(regex("^/Library/Keychains/"/i)),literal("/private/etc")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/-Caches-/mds$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/C/mds/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/folders/[^/]+/[^/]+/C/mds$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/db/mds/[0-9]+/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/db/mds/[0-9]+$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/mds/[0-9]+/"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/tmp/mds/[0-9]+$"/i)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/cores/"/i),require-not(file-mode("#o0000"))])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/console")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/null")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/zero")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("mDNSOffloadUserClient")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("wlDNSOffloadUserClient")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("NVEthernetUserClientMDNS")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bsd.dirhelper")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.snhelper")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.blued")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awacs")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webcontentfilter.dns")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SecurityServer")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mDNSResponderHelper")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ocspd")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications.2")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.DirectoryService.libinfo_v1")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.d2d.ipc")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("mDNSResponder"),decision("allow"),operation("system-socket"),filters([])).
diff --git a/profile_compilation/prologFactsForProfiles/mediaserverd.pl b/profile_compilation/prologFactsForProfiles/mediaserverd.pl
deleted file mode 100644
index 81c5494..0000000
--- a/profile_compilation/prologFactsForProfiles/mediaserverd.pl
+++ /dev/null
@@ -1,340 +0,0 @@
-
-
-profileDefault(profile("mediaserverd"),decision("deny")).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd/"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VideoProcessing.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.audio.virtualaudio.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ids.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences-sounds.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.settings.bluetooth.audio-route.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.springboard.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.VideoConference.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.celestial.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.conference.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.facetime.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.facetime.bag.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.imessage.bag.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/sbin/mediaserverd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/AppleInternal/Library/Preferences/com.apple.airplay.dashboard.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/local/share/firmware/isp/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/local/lib/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/sbin/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/AirPlay[.]log"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/mediaserverd"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.app-sandbox.read")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Recordings/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Podcasts/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoStreamsData/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/PhotoData/Sync/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/iTunes_Control/Music/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Downloads/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/DCIM/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/logs/mediaserverd/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/tmp/AirTunesHALPlugin.log")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/wireless/Library/Logs/awd/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/CoreMotion/CoreMotion.log")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.airplay.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/awd/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/AppleInternal/Library/Conference/Environments.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/AirPlay[.]log"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/mediaserverd"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]audio[.]virtualaudio[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]celestial[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]conference[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]coreaudio[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]facetime[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]facetime[.]bag[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]imessage[.]bag[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd/"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]mediaserverd$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.app-sandbox.read")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Recordings/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Purchases/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Podcasts/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/PhotoStreamsData/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/PhotoData/Sync/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Ringtones/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/iTunes_Control/Music/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Downloads/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/DCIM/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Caches/com.apple.VideoConference/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/logs/mediaserverd/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/tmp/AirTunesHALPlugin.log")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/wireless/Library/Logs/awd/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]avfoundation[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]coremedia[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/CoreMotion/CoreMotion.log")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/awd/")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]airplay[.]plist"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/CoreMotion")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("com_apple_driver_FairPlayIOKitUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOUSBInterfaceUserClientV2")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOStreamAudioUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDResourceDeviceUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOHIDLibUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAudioCodecsUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAudio2TransformerUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAudio2DeviceUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccessoryManagerUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("H3H264VideoEncoderDriverUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXD393UserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXD390UserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXE380UserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleVXD375UserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH6CamInUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH4CamInUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH3CamInUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleH2CamInUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_read")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_sco_write")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^[0-9A-F][0-9A-F]:+[0-9A-F][0-9A-F]-tacl$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^shm_notif[.][^.]+[.][RW]$"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^com[.]apple[.]audio[.]abl[.]"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAudioQueue[.]."/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAURemoteIO[.]."/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleABL[.]."/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAudioQueue[.].+"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleAURemoteIO[.].+"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^AppleABL[.].+"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("shm_pcm_audio_acl")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon.deatchwatch")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iTunesStore.daemon-notifications")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.processinvalidation")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.server.bluetooth")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securekeyvaultd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lskdd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.xpc")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.xpc")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iap2d.distributednotification.server")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iapd.distributednotification.server")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.filesystems.userfsd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fairplayd.versioned")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coresymbolicationd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.virtualdisplayserver")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.SystemSounds")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WirelessCoexManager")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.NetworkLinkConditioner")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.awdd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-register"),filters([global-name("com.apple.midiserver.io")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]coremedia[.]"/i)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("*:*"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:*"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([remote(udp("*:*"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/usr/sbin/mediaserverd")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),debug-mode,literal("/usr/bin/trace")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),debug-mode,literal("/usr/bin/syslog")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-fork"),filters([debug-mode])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
-profileRule(profile("mediaserverd"),decision("allow"),operation("system-suspend-resume"),filters([])).
diff --git a/profile_compilation/prologFactsForProfiles/mobile-house-arrest.pl b/profile_compilation/prologFactsForProfiles/mobile-house-arrest.pl
deleted file mode 100644
index 563153b..0000000
--- a/profile_compilation/prologFactsForProfiles/mobile-house-arrest.pl
+++ /dev/null
@@ -1,206 +0,0 @@
-
-
-profileDefault(profile("mobile-house-arrest"),decision("deny")).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/zero")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/random")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/urandom")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/aes_0")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/ptmx")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/private/var/mobile/Library/Preferences/com.apple.afc.plist")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec/mobile_house_arrest")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/Library/Preferences/SystemConfiguration/com.apple.afc.DeviceInfo.plist")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/usr/libexec")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),literal("/dev/null")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/usr/libexec/Contents/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-data"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/GeoJSON$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-data"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/GeoJSON$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Applications")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/Library/Preferences/SystemConfiguration")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("mobile-house-arrest"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/mobileassetd.pl b/profile_compilation/prologFactsForProfiles/mobileassetd.pl
deleted file mode 100644
index f3827d6..0000000
--- a/profile_compilation/prologFactsForProfiles/mobileassetd.pl
+++ /dev/null
@@ -1,176 +0,0 @@
-
-
-profileDefault(profile("mobileassetd"),decision("deny")).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),subpath("/private/var/mobile/Library/PreinstalledAssets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),literal("/private/var/mobile/Library/VoiceServices")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.assets.read"),subpath("/private/var/mobile/Library/Assets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/mobileassetd/"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/mobileassetd$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/AppleInternal/Library/PreinstalledAssets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.mobilegestalt.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/mobileassetd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/PreinstalledAssets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/VoiceServices")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/root/Library/Caches/mobileassetd/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/root/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Cookies$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/root/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/PreinstalledAssets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/mobileassetd/"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/mobileassetd$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Assets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/VoiceServices")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/root/Library/Caches/mobileassetd/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Cookies$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/root/Library/Preferences/com[.]apple[.]MobileAsset[.]plist"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i),extension("com.apple.app-sandbox.read-write")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("system-sched"),filters([])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("mobileassetd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/nointernet.pl b/profile_compilation/prologFactsForProfiles/nointernet.pl
deleted file mode 100644
index 636b99a..0000000
--- a/profile_compilation/prologFactsForProfiles/nointernet.pl
+++ /dev/null
@@ -1,12 +0,0 @@
-
-
-profileDefault(profile("nointernet"),decision("allow")).
-profileRule(profile("nointernet"),decision("allow"),operation("fileSTAR"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
-profileRule(profile("nointernet"),decision("allow"),operation("file-chroot"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
-profileRule(profile("nointernet"),decision("allow"),operation("file-write-create"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
-profileRule(profile("nointernet"),decision("allow"),operation("networkSTAR"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
-profileRule(profile("nointernet"),decision("allow"),operation("networkSTAR"),filters([local(ip("*:*"))])).
-profileRule(profile("nointernet"),decision("allow"),operation("network-inbound"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
-profileRule(profile("nointernet"),decision("allow"),operation("network-bind"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
-profileRule(profile("nointernet"),decision("allow"),operation("network-outbound"),filters([regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i)])).
-profileRule(profile("nointernet"),decision("allow"),operation("network-outbound"),filters([subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")])).
diff --git a/profile_compilation/prologFactsForProfiles/nsnetworkd.pl b/profile_compilation/prologFactsForProfiles/nsnetworkd.pl
deleted file mode 100644
index 4a8517d..0000000
--- a/profile_compilation/prologFactsForProfiles/nsnetworkd.pl
+++ /dev/null
@@ -1,162 +0,0 @@
-
-
-profileDefault(profile("nsnetworkd"),decision("deny")).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-journal")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-shm")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-wal")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.nsnetworkd.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Duet.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec/nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/usr/libexec")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/com.apple.nsnetworkd/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/Caches/com[.]apple[.]nsnetworkd/"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.nsnetworkd.readonly"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-journal")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-shm")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db-wal")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/Caches/com[.]apple[.]nsnetworkd/"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/com[.]apple[.]nsnetworkd/"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]nsnetworkd[.]plist"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/Caches/com[.]apple[.]nsnetworkd$"/i)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/nsnetworkd/Cache.db")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/com.apple.nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/com.apple.nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.powerlog.plxpclogger.xpc")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd.xpc")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("nsnetworkd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/passd.pl b/profile_compilation/prologFactsForProfiles/passd.pl
deleted file mode 100644
index 70b36be..0000000
--- a/profile_compilation/prologFactsForProfiles/passd.pl
+++ /dev/null
@@ -1,203 +0,0 @@
-
-
-profileDefault(profile("passd"),decision("deny")).
-profileRule(profile("passd"),decision("allow"),operation("distributed-notification-post"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("passd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("passd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("passd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd/"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ConfigServer.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]passd"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]passd"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.passd.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Passes/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("passd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.pep.configuration.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd/"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]passd"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]passd"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Passes/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]passd[.]plist"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd/"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]passd$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("passd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("passd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("passd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("passd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("passd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("passd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("passd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accountsd.accountmanager")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.apsd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.carditemscontroller")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FSEvents")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.FileCoordination")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("passd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("passd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("passd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("passd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("passd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("passd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("passd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/pfd.pl b/profile_compilation/prologFactsForProfiles/pfd.pl
deleted file mode 100644
index c172d41..0000000
--- a/profile_compilation/prologFactsForProfiles/pfd.pl
+++ /dev/null
@@ -1,121 +0,0 @@
-
-
-profileDefault(profile("pfd"),decision("deny")).
-profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/pfm")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/pfm")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("pfd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/pfm")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("pfd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("pfd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("pfd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("pfd"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("pfd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("pfd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("pfd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("pfd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("pfd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("pfd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/printd.pl b/profile_compilation/prologFactsForProfiles/printd.pl
deleted file mode 100644
index df322ad..0000000
--- a/profile_compilation/prologFactsForProfiles/printd.pl
+++ /dev/null
@@ -1,156 +0,0 @@
-
-
-profileDefault(profile("printd"),decision("deny")).
-profileRule(profile("printd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("printd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("printd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("printd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("printd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("printd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd/"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd$"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.printd.plist")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Media/"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/com.apple.printd/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/run/printd/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("printd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]printd[.]plist"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd/"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]printd$"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/com.apple.printd/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/printd/")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("printd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("printd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("printd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("printd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("printd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("printd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PowerManagement.control")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.wifi.manager")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("printd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("printd"),decision("allow"),operation("network-inbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(tcp("*:*"))])).
-profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("printd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("printd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("printd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("printd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("printd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("printd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/profile.pl b/profile_compilation/prologFactsForProfiles/profile.pl
deleted file mode 100644
index 67b6a5c..0000000
--- a/profile_compilation/prologFactsForProfiles/profile.pl
+++ /dev/null
@@ -1,19 +0,0 @@
-
-
-profileDefault(profile("profile"),decision("deny")).
-profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/readpri/")])).
-profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([literal("/abc/ds")])).
-profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/"),extension("librarian"),require-not(regex("^/reggie1$"/i)),require-not(regex("^/reggie2$"/i))])).
-profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("ally")])).
-profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("guard")])).
-profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("safari")])])).
-profileRule(profile("profile"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("webapp")])])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/writepri/")])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([literal("/abc/ds")])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/Sys1$"/i)])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([regex("^/Sys2$"/i)])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/private/var/"),extension("librarian")])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/mobile/"),extension("ally")])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/mobile/"),extension("guard")])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("safari")])])).
-profileRule(profile("profile"),decision("allow"),operation("file-writeSTAR"),filters([subpath("/Media/"),require-entitlement("signing",[entitlement-value("webapp")])])).
diff --git a/profile_compilation/prologFactsForProfiles/ptpd.pl b/profile_compilation/prologFactsForProfiles/ptpd.pl
deleted file mode 100644
index fdaba30..0000000
--- a/profile_compilation/prologFactsForProfiles/ptpd.pl
+++ /dev/null
@@ -1,128 +0,0 @@
-
-
-profileDefault(profile("ptpd"),decision("deny")).
-profileRule(profile("ptpd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.ImageCaptureFramework.plist")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/ptpd[.]log$"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/mobile/"))])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs/Photos/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/ptpd[.]log$"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]ImageCaptureFramework[.]plist"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/DiagnosticLogs")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("ptpd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("ptpd"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("ptpd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("ptpd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("ptpd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("ptpd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("ptpd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("ptpd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("ptpd"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("ptpd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/quicklookd.pl b/profile_compilation/prologFactsForProfiles/quicklookd.pl
deleted file mode 100644
index 5004160..0000000
--- a/profile_compilation/prologFactsForProfiles/quicklookd.pl
+++ /dev/null
@@ -1,397 +0,0 @@
-
-
-profileDefault(profile("quicklookd"),decision("deny")).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.quicklook.readonly")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.nsnetworkd.readonly")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.librarian.ubiquity-container"),subpath("/private/var/mobile/Library/Mobile Documents/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.quicklook.readonly"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/MediaCache/"),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.carrier.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Carrier Bundles/Overlay/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.SpeakSelection.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.voiceservices.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/VoiceServices/Assets/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/com_apple_MobileAsset_VoiceServicesVocalizerVoice/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mediaaccessibility.public.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.keyboard.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.InputModePreferences.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.assistant.support.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Fonts/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.accounts.exists.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.sinaweibo.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.linkedin.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.facebook.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.twitter.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.IconsCache/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Caches/com.apple.UIStatusBar/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Sharing.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.CoreMotion.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.Accessibility.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.UIKit.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebUI.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mt.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.preferences.sounds.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.telephonyutilities.dialassist.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.logging.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MapKit.internal.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.radios.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Dictionaries/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Dictionaries/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/DateFormats.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Applications/quicklookd.app/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.quicklook.readonly")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles//carrier[.]plist$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+/carrier[.]plist$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/System/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/[.]png$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Carrier Bundles/.+[.]png$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Application Support/Ubiquity/genstore/"),extension("com.apple.librarian.ubiquity-revision")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.avfoundation.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coreaudio.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.coremedia.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.corevideo.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.homesharing.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Preferences/com.apple.itunesstored.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Library/Caches/Checkpoint.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileslideshow.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/null")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/zero")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/random")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/urandom")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]quicklook[.]quicklookd[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]quicklook[.]quicklookd[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/SyncedPreferences/com[.]apple[.]quicklook[.]quicklookd-.+[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd-"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]quicklook[.]quicklookd.savedState/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.demo-settings.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.DataAccess.BehaviorOptions.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Caches/com.apple.itunesstored/url-resolution.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.GEO.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.locationd.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.Preferences.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.youtubeframework.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.aggregated.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobileipod.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.WebKit.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.videos.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),require-not(subpath("/private/var/mobile/Library/FairPlay/")),require-not(literal("/usr/sbin/fairplayd")),require-not(subpath("/private/var/mobile/Media/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Metadata/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Sync/FaceAlbumThumbnails/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),subpath("/private/var/mobile/Media/PhotoData/Thumbnails/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),literal("/private/var/mobile/Media/PhotoData/syncInfo.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-wal$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-shm$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),regex("^/private/var/mobile/Media/PhotoData/Photos.sqlite-journal$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/private/var/mobile/Library/Carrier Bundles/")),require-not(subpath("/System/Library/Carrier Bundles/")),extension("com.apple.tcc.kTCCServicePhotos")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-read-xattr"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Preferences/com.apple.dataaccess.launchd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Caches/com.apple.keyboards/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mediaaccessibility[.]public[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),literal("/private/var/mobile/Library/Keyboard/LocalDictionary")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/tmp/MediaCache/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),subpath("/private/var/mobile/Library/Mobile Documents/"),extension("com.apple.librarian.ubiquity-container")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/ptmx")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/dtracehelper")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db-journal")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]quicklook[.]quicklookd[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd-"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/Snapshots/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Documents/com[.]apple[.]quicklook[.]quicklookd[.]settings/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]quicklook[.]quicklookd.savedState/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd/"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]quicklook[.]quicklookd$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/LocalStorage/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db-journal")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebKit/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Preferences[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]youtubeframework[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]WebFoundation[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Media/Safari/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/WebClips/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]mobileslideshow[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/dev/aes_0")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]springboard[.]plist"/i)),require-not(literal("/private/var/mobile/Library/Caches/DateFormats.plist")),require-not(subpath("/private/var/mobile/Media/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches/com.apple.DictionaryServices")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),regex("^/private/var/mobile/Library/Saved Application State/com[.]apple[.]quicklook[.]quicklookd.savedState"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches/Snapshots")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]Accessibility[.]plist"/i)),require-not(regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]UIKit[.]plist"/i)),vnode-type(directory),literal("/private/var/mobile/Library/Saved Application State")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/LocalStorage/StorageTracker.db")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/WebKit/Databases/Databases.db")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOMobileFramebufferUserClient")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceSendRight")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleM2ScalerCSCDriverUserClient")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleKeyStoreUserClient")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient2")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelSharedUserClient")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelContext2")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOAccelDevice2")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("IOSurfaceRootUserClient")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleJPEGDriverUserClient")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI in [0-9]+$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name-regex("^Apple MIDI out [0-9]+$"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.registration")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.synchronous")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.locationd.spi")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assetsd.changehub")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.embedded.auth")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.imagent.Embedded.Launched")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.fig.movie")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.sandboxserver")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.recorder")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.audiodeviceclock")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.asset")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.admin")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.assetimagegenerator")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilecheckpoint.checkpointd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.PersistentURLTranslator.Gatekeeper")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SBUserNotification")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mediaserverd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.videocompositor")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.remaker")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.coremedia.endpoint")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioSession")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.backgroundappservices")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunescloudd.xpc")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.daemon")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.nowplayingserver")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.MediaRemote.isrunning")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AURemoteIOServer")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webinspector")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.webfilterd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.WebBookmarks.webbookmarksd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.safarifetcherd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.NetworkInformation")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.PPPController")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.DNSConfiguration")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.SCNetworkReachability")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.xpc")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.commcenter.cupolicy.xpc")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.usymptomsd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.symptomsd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.networkd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.nsnetworkd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.AuthBrokerAgent")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cfnetwork.cfnetworkagent")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.systemservices")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.librariand")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com.apple.uikit.viewservice..+"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("ScripterServer")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.TextInput.rdt")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.gax.backboard")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("UIASTNotificationCenter")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.accessibility.AXBackBoardServer")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.audio.AudioQueueServer")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.voiceservices.tts")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.airplaydiagnostics.server")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.assistant.dictation")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.dictationd.recognition")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.pasteboardd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.CARenderServer")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.springboard.services")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iphone.axserver-systemwide")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.iohideventsystem")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.hid.services")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.display.services")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.UIKit.statusbarserver")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.sharingd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.marco")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.appsupport.cplogd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cvmsServ")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.gpumemd.source")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleSystemAppPort")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.calaccessd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.applicationstateconnection")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("PurpleWorkspacePort")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-register"),filters([local-name("com.apple.iphone.axserver")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]accessibility[.]gax[.]client-"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("mach-register"),filters([global-name-regex("^com[.]apple[.]assistant[.]contextprovider[.]"/i)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/printd")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("quicklookd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("quicklookd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("quicklookd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("quicklookd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("quicklookd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/racoon.pl b/profile_compilation/prologFactsForProfiles/racoon.pl
deleted file mode 100644
index 8f8340b..0000000
--- a/profile_compilation/prologFactsForProfiles/racoon.pl
+++ /dev/null
@@ -1,111 +0,0 @@
-
-
-profileDefault(profile("racoon"),decision("deny")).
-profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/log/racoon.log")])).
-profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/Library/Keychains/System.keychain")])).
-profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/mds/system/mdsDirectory.db")])).
-profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/mds/system/mds.lock")])).
-profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/db/mds/system/mdsObject.db")])).
-profileRule(profile("racoon"),decision("allow"),operation("fileSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/var/log/racoon.log")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/etc/master.passwd/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/etc/racoon/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/preferences/SystemConfiguration/com.apple.ipsec.plist")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/run/racoon/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/sha1_0")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/master.passwd/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/etc/racoon/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/SystemConfiguration/com.apple.ipsec.plist")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/run/racoon/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Managed Preferences/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/db/mds/messages/se_SecurityMessages")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/root/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Library/Preferences/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/sha1_0")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/sbin/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/lib/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/System/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/share/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/share/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/usr/lib/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/System/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-readSTAR"),filters([file-mode("#o0004"),subpath("/private/var/db/dyld/")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/tmp")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/var")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/etc/localtime")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/etc")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/var")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/tmp")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-read-metadata"),filters([literal("/etc")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/racoon.sock")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/racoon.pid")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/cores/"/i),require-not(file-mode("#o0000"))])).
-profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/zero")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/null")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/zero")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/sha1_0")])).
-profileRule(profile("racoon"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/null")])).
-profileRule(profile("racoon"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("racoon"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("RootDomainUserClient")])).
-profileRule(profile("racoon"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("ipc-posixSTAR"),filters([ipc-posix-name("com.apple.securityd")])).
-profileRule(profile("racoon"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("com.apple.AppleDatabaseChanged")])).
-profileRule(profile("racoon"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SecurityServer")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ocspd")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.SystemConfiguration.configd")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.securityd")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.bsd.dirhelper")])).
-profileRule(profile("racoon"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.DirectoryService.libinfo_v1")])).
-profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:500"))])).
-profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),remote(udp("*:*"))])).
-profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/run/racoon.sock")])).
-profileRule(profile("racoon"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),local(udp("*:4500"))])).
-profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([subpath("/private/var/tmp/launchd/")])).
-profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
-profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.net.ipsec_control")])).
-profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/asl_input")])).
-profileRule(profile("racoon"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("racoon"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("racoon"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("racoon"),decision("allow"),operation("sysctlSTAR"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("sysctl-write"),filters([])).
-profileRule(profile("racoon"),decision("allow"),operation("system-info"),filters([info-type("net.link.addr")])).
-profileRule(profile("racoon"),decision("allow"),operation("system-socket"),filters([])).
diff --git a/profile_compilation/prologFactsForProfiles/requireAnyTest.pl b/profile_compilation/prologFactsForProfiles/requireAnyTest.pl
deleted file mode 100644
index 2988a6b..0000000
--- a/profile_compilation/prologFactsForProfiles/requireAnyTest.pl
+++ /dev/null
@@ -1,13 +0,0 @@
-
-
-profileDefault(profile("requireAnyTest"),decision("deny")).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/readpri/")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([literal("/abc/ds")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("ally"),extension("vigilance")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("guard"),extension("vigilance")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("flying"),extension("vigilance")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("trample"),extension("vigilance")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("ally"),extension("hexproof")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),extension("guard"),extension("hexproof")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("flying"),extension("hexproof")])).
-profileRule(profile("requireAnyTest"),decision("allow"),operation("file-readSTAR"),filters([subpath("/mobile/"),literal("/myfile"),extension("trample"),extension("hexproof")])).
diff --git a/profile_compilation/prologFactsForProfiles/softwareupdated.pl b/profile_compilation/prologFactsForProfiles/softwareupdated.pl
deleted file mode 100644
index bba61db..0000000
--- a/profile_compilation/prologFactsForProfiles/softwareupdated.pl
+++ /dev/null
@@ -1,127 +0,0 @@
-
-
-profileDefault(profile("softwareupdated"),decision("deny")).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileSoftwareUpdate.plist")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.MobileAsset.plist")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/MobileSoftwareUpdate/restore.log")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Assets/"),extension("com.apple.assets.read")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/MobileSoftwareUpdate")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/MobileSoftwareUpdate")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/MobileSoftwareUpdate/restore.log")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/OTAUpdate-"/i)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/MobileSoftwareUpdate")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobileassetd")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("softwareupdated"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/syncdefaultsd.pl b/profile_compilation/prologFactsForProfiles/syncdefaultsd.pl
deleted file mode 100644
index bf7ade6..0000000
--- a/profile_compilation/prologFactsForProfiles/syncdefaultsd.pl
+++ /dev/null
@@ -1,161 +0,0 @@
-
-
-profileDefault(profile("syncdefaultsd"),decision("deny")).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd/"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.persistentconnection.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.accountsd.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.appleaccount.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.WebFoundation.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/SyncedPreferences/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//Library/SyncedPreferences/"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications//Library/SyncedPreferences$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences/"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(regex("^/private/var/mobile/Library/"/i))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/.com.apple.persistentconnection.settings.lock.lock")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection/com[.]apple[.]syncdefaultsd"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd/"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]syncdefaultsd$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Caches/com.apple.persistentconnection.intervalcache.plist.lock")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Preferences/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Cookies/Cookies[.]binarycookies"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/SyncedPreferences/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications//Library/SyncedPreferences/"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications//Library/SyncedPreferences$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences/"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/SyncedPreferences$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/PersistentConnection")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Logs/CrashReporter/PersistentConnection")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("iokit-open"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("iokit-set-properties"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.network.statistics")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([control-name("com.apple.netsrc")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/mDNSResponder")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([remote(tcp("*:*"))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/lockdown.sock")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("signal"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("syncdefaultsd"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).
diff --git a/profile_compilation/prologFactsForProfiles/transitd.pl b/profile_compilation/prologFactsForProfiles/transitd.pl
deleted file mode 100644
index de0936a..0000000
--- a/profile_compilation/prologFactsForProfiles/transitd.pl
+++ /dev/null
@@ -1,109 +0,0 @@
-
-
-profileDefault(profile("transitd"),decision("deny")).
-profileRule(profile("transitd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/"))])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("file-read-metadata"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Applications/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/spool/mdt/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/Inboxes/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Application Support/Containers/"/i)])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Application Support/Containers$"/i)])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Application Support")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("transitd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("transitd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("transitd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("transitd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("transitd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("transitd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("transitd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("transitd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("transitd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("transitd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/userfs_helper.pl b/profile_compilation/prologFactsForProfiles/userfs_helper.pl
deleted file mode 100644
index 0a0a1c3..0000000
--- a/profile_compilation/prologFactsForProfiles/userfs_helper.pl
+++ /dev/null
@@ -1,131 +0,0 @@
-
-
-profileDefault(profile("userfs_helper"),decision("deny")).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/disk[0-9]+"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/rdisk[0-9]+"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/etc/master.passwd")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/disk[0-9]+"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/rdisk[0-9]+"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper/"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper$"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper/"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfs_helper$"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/disk[0-9]+"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/rdisk[0-9]+"/i)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("userfs_helper"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/userfsd.pl b/profile_compilation/prologFactsForProfiles/userfsd.pl
deleted file mode 100644
index bfbad28..0000000
--- a/profile_compilation/prologFactsForProfiles/userfsd.pl
+++ /dev/null
@@ -1,127 +0,0 @@
-
-
-profileDefault(profile("userfsd"),decision("deny")).
-profileRule(profile("userfsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd/"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd$"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd/"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Caches/com[.]apple[.]userfsd$"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(directory),literal("/private/var/mobile/Library/Caches")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("userfsd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("userfsd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("userfsd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("userfsd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.filesystems.userfs_helper")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("userfsd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("userfsd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("userfsd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("userfsd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/System/Library/Filesystems/exfat.fs/Contents/Resources/fsck_exfat")])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-fork"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("userfsd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("userfsd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/vibrationmanagerd.pl b/profile_compilation/prologFactsForProfiles/vibrationmanagerd.pl
deleted file mode 100644
index 668205a..0000000
--- a/profile_compilation/prologFactsForProfiles/vibrationmanagerd.pl
+++ /dev/null
@@ -1,138 +0,0 @@
-
-
-profileDefault(profile("vibrationmanagerd"),decision("deny")).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.PeoplePicker.plist")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AOSNotification.public.notbackedup.plist")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.AppSupport.plist")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Media/Vibrations/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Media")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/com.apple.itunes.lock_sync")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Media/Vibrations/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/Preferences/com[.]apple[.]PeoplePicker[.]plist"/i)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Library/Preferences/com.apple.mobilephone.speeddial.plist")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/mobile/Library/AddressBook/")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.tcc.kTCCServiceAddressBook")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media/Vibrations")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/private/var/mobile/Media")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),debug-mode])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^/FSM-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^OA-"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^stack-logs"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-c$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([ipc-posix-name-regex("^gdt-[0-9A-Za-z]+-s$"/i),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([ipc-posix-name("apple.shm.notification_center")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.xpcd")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.tccd")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.mobilegestalt.xpc")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.lsd")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.backboard.processassertionconnection")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.logger")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.system.notification_center")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.distributed_notifications@1v3")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.managedconfiguration.profiled.public")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.cmfsyncagent.embedded.auth")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.identityservicesd.idquery.embedded.auth")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ABDatabaseDoctor")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.hangtracerd")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.ReportCrash.SimulateCrash")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.aggregated")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("mach-lookup"),filters([global-name("com.apple.itunesstored.xpc"),require-entitlement("com.apple.itunesstored.private",[])])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("network-outbound"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("vibrationmanagerd"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
diff --git a/profile_compilation/prologFactsForProfiles/vpn-plugins.pl b/profile_compilation/prologFactsForProfiles/vpn-plugins.pl
deleted file mode 100644
index 58c2d5e..0000000
--- a/profile_compilation/prologFactsForProfiles/vpn-plugins.pl
+++ /dev/null
@@ -1,182 +0,0 @@
-
-
-profileDefault(profile("vpn-plugins"),decision("deny")).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-ioctl"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension("com.apple.sandbox.container"),extension-class("com.apple.app-sandbox.read-write")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-issue-extension"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i),extension-class("com.apple.app-sandbox.read")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/dtracehelper")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/mobile/Library/Preferences/.GlobalPreferences.plist")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.networkd.plist")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/private/var/preferences/com.apple.NetworkStatistics.plist")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/db/timezone/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/lib/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/usr/share/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/Managed Preferences/mobile/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/Frameworks/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/System/Library/PrivateFrameworks/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/null")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/zero")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/random")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/urandom")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/aes_0")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([literal("/dev/ptmx")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/StoreKit$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/StoreKit$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesArtwork$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesArtwork$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+$"/i),extension("com.apple.vpn-plugin")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+.vpnplugin/"/i),extension("com.apple.vpn-plugin")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+.vpnplugin$"/i),extension("com.apple.vpn-plugin")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),debug-mode])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/Developer/"),require-not(require-entitlement("platform-application"))])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),debug-mode])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([subpath("/private/var/mobile/XcodeBuiltProducts/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/group")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/passwd")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/protocols")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/services")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/var/mobile/Library/Caches/com.apple.MobileGestalt.plist")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),subpath("/private/var/mobile/Library/ConfigurationProfiles/PublicInfo/")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),literal("/private/etc/hosts")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([require-not(subpath("/dev/")),require-not(subpath("/private/var/tmp/")),require-not(subpath("/private/var/mobile/Library/")),require-not(subpath("/private/var/mobile/Library/Preferences/")),require-not(subpath("/private/var/logs/")),require-not(subpath("/private/var/ea/")),require-not(regex("^/private/var/mobile/Applications/$"/i)),require-not(regex("^/private/var/mobile/Applications/.+$"/i))])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-readSTAR"),filters([vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/run/syslog")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(symlink)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(directory)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Preferences")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([literal("/private/var/mobile/Library/Caches/powerlog.launchd")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/iTunesMetadata[.]plist$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-read-metadata"),filters([vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/dtracehelper")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/aes_0")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),literal("/dev/ptmx")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),debug-mode])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),subpath("/private/var/tmp/"),require-entitlement("com.apple.private.security.sandbox.debug-mode",[])])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ttyp[0-9a-f]$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(tty),regex("^/dev/ptyp[0-9a-f]$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),regex("^/dev/ttys[0-9]+"/i),extension("com.apple.sandbox.pty")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/tmp$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Library$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/tmp$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Library$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/null")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-writeSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(literal("/dev/urandom")),require-not(literal("/dev/random")),literal("/dev/zero")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-create"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-data"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.send")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/Documents/Inbox$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/Documents/Inbox$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("file-write-unlink"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),vnode-type(regular-file),extension("com.apple.private.safe-move.receive")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("iokit-open"),filters([iokit-user-client-class("AppleMobileFileIntegrityUserClient")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("iokit-get-properties"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-sem"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shmSTAR"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-readSTAR"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-read-data"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-read-metadata"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-writeSTAR"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-write-create"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-write-data"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("ipc-posix-shm-write-unlink"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("mach-bootstrap"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("mach-lookup"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("mach-register"),filters([global-name("com.f5.f5_sslvpn_plugin")])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("networkSTAR"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/"))])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("network-outbound"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),require-not(regex("^/private/tmp/launchd-[0-9]+[.][^/]+/sock$"/i))])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("privSTAR"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("priv-adjtime"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("priv-netinetSTAR"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("priv-netinet-reservedport"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Library/MobileInstallation/GuestContainer[.][^/]+/[^/]+[.]app$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app/"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-exec"),filters([require-not(subpath("/private/var/tmp/zz/zyxvpxvq6csfxvn_n0000000000000/C/com.apple.sandbox/")),extension("com.apple.sandbox.container"),regex("^/private/var/mobile/Applications/[-0-9A-Z]+/[^/]+[.]app$"/i)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-infoSTAR"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-listpids"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-pidinfo"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-pidfdinfo"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-pidfileportinfo"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-setcontrol"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-dirtycontrol"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("process-info-rusage"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("pseudo-tty"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("signal"),filters([target(self)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("sysctl-read"),filters([])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("system-sched"),filters([require-entitlement("com.apple.private.kernel.override-cpumon",[])])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("system-socket"),filters([socket-domain(af_route)])).
-profileRule(profile("vpn-plugins"),decision("allow"),operation("system-socket"),filters([socket-domain(af_system),socket-protocol(2)])).

From 7a55d09fc38632ccd8f1d49a33cc4165f7d38247 Mon Sep 17 00:00:00 2001
From: AntociAlin <Antoci.Alin97@gmail.com>
Date: Mon, 13 Jun 2022 06:19:41 -0700
Subject: [PATCH 3/3] Fix for the # in files

---
 convertToProlog.sh |  2 +-
 smartPly.py        | 15 +++++++++++++++
 2 files changed, 16 insertions(+), 1 deletion(-)

diff --git a/convertToProlog.sh b/convertToProlog.sh
index d49730d..be752e1 100755
--- a/convertToProlog.sh
+++ b/convertToProlog.sh
@@ -4,7 +4,7 @@ if test $# -ne 1; then
     echo "Usage: $0 <sb_file>" 1>&2
     echo "" 1>&2
     echo "Sample usage:" 1>&2
-    echo "  $0 test_cases/containerManualPruning.sb" 1>&2
+    echo "  $0 test-cases/containerBetterGraphProcess.sb" 1>&2
     exit 1
 fi
 
diff --git a/smartPly.py b/smartPly.py
index cfc6908..76576f1 100755
--- a/smartPly.py
+++ b/smartPly.py
@@ -3,6 +3,7 @@
 import ply.lex as lex
 import ply.yacc as yacc
 import sys
+import re
 
 
 ####################################################
@@ -19,6 +20,7 @@
         'require-any' : 'TK_REQANY',
         'require-not' : 'TK_REQNOT',
         'vnode-type' : 'TK_VNODETYPE',
+        'file-mode': 'TK_FILEMODETYPE', #Fix for the # in files
         'debug-mode' : 'TK_DEBUGMODE',
         'require-entitlement' : 'TK_REQENT'}
 
@@ -30,6 +32,7 @@
         'TK_OTHERTYPE',
         'TK_BOOL',
         'TK_REGEXPRESSION',
+        'TK_HASH' #Fix for the # in files
         ] + list(reserved.values())
 
 # Regular expression rules for simple tokens
@@ -59,6 +62,13 @@ def t_TK_BOOL(t):
     t.value = str(t.value)
     return t
 
+#Fix for the # in files
+def t_TK_HASH(t):
+    r'\#[a-z][0-9][0-9][0-9][0-9]'
+    r'\#[a-z]'
+    t.value = str(t.value)
+    return t
+
 
 #Taken from ply example in documentation
 #Tracks line numbers
@@ -251,6 +261,7 @@ def p_object(p):
               | otherType otherType
               | otherType otherType TK_FILTER
               | subpath
+              | filemode
               | TK_REQNOT TK_LPAREN object TK_RPAREN
               | TK_REQNOT TK_LPAREN simpleEntValObject TK_RPAREN
               | TK_VNODETYPE otherType
@@ -281,6 +292,10 @@ def p_object(p):
         p[3] = temp
         p[0] = p[1] +"("+  p[3] +","+ p[4] +","+ p[5] +")"
 
+def p_filemode(p): #Fix for the # in files
+    'filemode : TK_FILEMODETYPE TK_HASH' 
+    p[0] = p[1] + "(\"" + p[2] + "\")"
+
 def p_subpath(p):
     'subpath : TK_SUBPATH TK_FILTER'
     p[2] = p[2][:-1] + '/"'